2010 Archives by thread
Starting: Sun Jan 3 06:42:07 EST 2010
Ending: Fri Dec 31 21:53:08 EST 2010
Messages: 346
- [SC-L] WASC Announcement: WASC Threat Classification v2.0 Published
announcements at webappsec.org
- [SC-L] Announcement SecAppDev 2010
Johan Peeters
- [SC-L] seeking sponsors for SXSW Security BSides
Benjamin Tomhave
- [SC-L] Ramesh Nagappan Blog : Java EE 6: Web Application Security made simple ! | Core Security Patterns Weblog
Kenneth Van Wyk
- [SC-L] CWE/SANS Top 25 List - new for 2010
Steven M. Christey
- [SC-L] FT.com / UK - 'Year 2010' software glitch hits German bank cards
Kenneth Van Wyk
- [SC-L] 2010 bug hits millions of Germans | World news | The Guardian
Kenneth Van Wyk
- [SC-L] "Checklist Manifesto" applicability to software security
Jeremy Epstein
- [SC-L] 2010 bug hits millions of Germans | World news | The Guardian
Peter G. Neumann
- [SC-L] Recommending ESAPI?
Dinis Cruz
- [SC-L] W2SP 2010: Web 2.0 Security and Privacy 2010 CFP
Larry Koved
- [SC-L] new post: The Three Domains of Application Security
Benjamin Tomhave
- [SC-L] FW: RSA Conference <forwarded spam>
Gary McGraw
- [SC-L] Secure Web Application Framework Manifesto
Rohit Sethi
- [SC-L] Special Issue of IJSSE: Software Safety & Dependability - the Art of Engineering Trustworthy Software
Goertzel, Karen [USA]
- [SC-L] [Esapi-dev] Recommending ESAPI?
Dinis Cruz
- [SC-L] InformIT: You need an SSG
Benjamin Tomhave
- [SC-L] Ramesh Nagappan Blog : Java EE 6: Web Application Security made simple ! | Core Security Patterns Weblog
Jim Manico
- [SC-L] ESAPI for JavaScript!
Jim Manico
- [SC-L] OWASP for Charities: Haiti relief effort
Dinis Cruz
- [SC-L] Webcast? and BSIMM goes statistical
Gary McGraw
- [SC-L] ESAPI4JS 0.1.3 Released
Chris Schmidt
- [SC-L] Silver Bullet 46: David Rice (Geekonomics)
Gary McGraw
- [SC-L] BSIMM update (informIT)
Gary McGraw
- [SC-L] How a stray mouse click choked the NYSE & cost a bank $150K
Benjamin Tomhave
- [SC-L] ESAPI 1.4.4 released!
Jim Manico
- [SC-L] BSIMM update (informIT)
Wall, Kevin
- [SC-L] NIST SP 800-37
McGovern, James F. (eBusiness)
- [SC-L] [SAMM] NIST SP 800-37
McGovern, James F. (eBusiness)
- [SC-L] BSIMM update (informIT)
Steven M. Christey
- [SC-L] OWASP Podcast Series
Jim Manico
- [SC-L] OWASP DEVELOPMENT GUIDE NEWS/CALL FOR CONTRIBUTORS
Boberski, Michael [USA]
- [SC-L] A massive change at DARPA
Jeremy Epstein
- [SC-L] seeking hard numbers of bug fixes...
Benjamin Tomhave
- [SC-L] BSIMM2: 15 things most firms do
Gary McGraw
- [SC-L] Silver Bullet: Greg Morrisett
Gary McGraw
- [SC-L] cfp: W2SP 2010: Web 2.0 Security and Privacy 2010 CFP - 2nd call
Larry Koved
- [SC-L] sponsors still needed for BSides Austin
Benjamin Tomhave
- [SC-L] USA today article Cyber Crimes and software security evangelism
Matt Parsons
- [SC-L] black berry security
Matt Parsons
- [SC-L] blog post and open source vulnerabilities to blog about
Matt Parsons
- [SC-L] market for training CISSPs how to code
Matt Parsons
- [SC-L] Expert in Application Security — ENISA
Kenneth Van Wyk
- [SC-L] market for training CISSPs how to code (Matt Parsons)
AK
- [SC-L] OWASP Podcast Update
Jim Manico
- [SC-L] market for training CISSPs how to code (Matt Parsons)
Craig E. Ward
- [SC-L] market for training CISSPs how to code
Wheeler, David A
- [SC-L] market for training CISSPs how to code (Matt, Parsons)
AK
- [SC-L] Bring your Cloud to Work Day
Gunnar Peterson
- [SC-L] SC-L Digest, Vol 6, Issue 56
AK
- [SC-L] SC-L Digest, Vol 6, Issue 56
AK
- [SC-L] CFP: W2SP 2010: Web 2.0 Security and Privacy 2010 CFP - final call
Larry Koved
- [SC-L] free scans from Google...
Benjamin Tomhave
- [SC-L] Smart Grid and Software Security
Gary McGraw
- [SC-L] Silver Bullet Transcripts
Gary McGraw
- [SC-L] Silver Bullet 48: Andrew Jaquith
Gary McGraw
- [SC-L] informIT: smart grid and software security
Gary McGraw
- [SC-L] academics do software security too
Gary McGraw
- [SC-L] The International Secure Systems Development Conference
Kenneth Van Wyk
- [SC-L] OWASP ESAPI 2.0 rc6 released!
Jim Manico
- [SC-L] working on java security help from experts
Matt Parsons
- [SC-L] Why NoSQL is bad for startups
kowsik
- [SC-L] has any one completed a python security code review`
Matt Parsons
- [SC-L] has any one completed a python security code review`
Peter G. Neumann
- [SC-L] Call to review OWASP ESAPI crypto code
Kevin W. Wall
- [SC-L] has any one completed a python security code review`
Peter G. Neumann
- [SC-L] any one a CSSLP is it worth it?
Matt Parsons
- [SC-L] How to stop hackers at the root cause
Matt Parsons
- [SC-L] [WEB SECURITY] RE: How to stop hackers at the root cause
Arian J. Evans
- [SC-L] [WEB SECURITY] RE: How to stop hackers at the root cause
Jeremiah Heller
- [SC-L] OWASP Podcast Series update
Jim Manico
- [SC-L] [WEB SECURITY] Re: [owaspdallas] Re: [WEB SECURITY] RE: How to stop hackers at the root cause
Arian J. Evans
- [SC-L] What do you like better Web penetration testing or static code analysis?
Matt Parsons
- [SC-L] Top Ten OWASP Podcast Series
Jim Manico
- [SC-L] I have not seen many people comment on the new OWASP top Ten What does every one think I blogged about it from my perspective. I am interested in hearing about other peoples experience with it
Matt Parsons
- [SC-L] What do you like better Web penetration testing or static code analysis?
Peter G. Neumann
- [SC-L] [WEB SECURITY] Re: What do you like better Web penetration testing or static code analysis?
Arian J. Evans
- [SC-L] [WEB SECURITY] Re: What do you like better Web penetration testing or static code analysis?
Arian J. Evans
- [SC-L] [WEB SECURITY] Re: What do you like better Web penetration testing or static code analysis?
Matt Parsons
- [SC-L] [WEB SECURITY] Re: What do you like better Web penetration testing or static code analysis?
Sebastian Schinzel
- [SC-L] [WEB SECURITY] Re: What do you like better Web penetration testing or static code analysis?
Chris Wysopal
- [SC-L] Silver Bullet 49: Ivan Arce + informIT on Virtual PC vulnerability
Gary McGraw
- [SC-L] Introductions Matt Parsons Video Blog is there an interest
Matt Parsons
- [SC-L] Web Application Exploits and Defenses
Kenneth Van Wyk
- [SC-L] Next Release of the Secure Web Application Framework Manifesto
Rohit Sethi
- [SC-L] Are people using Threat modeling?
Matt Parsons
- [SC-L] final reminder: W2SP 2010: Web 2.0 Security and Privacy 2010
Larry Koved
- [SC-L] BSIMM2
Gary McGraw
- [SC-L] CSRF and Header Forging - your thoughts needed
Michael Coates
- [SC-L] Three biggest problems companies are facing with software security
Matt Parsons
- [SC-L] Static analysis tool exposition (SATE) Call for participation
Vadim Okun
- [SC-L] SATE
Jim Manico
- [SC-L] Vulnerability Analysis Blog: CERT Basic Fuzzing Framework
Kenneth Van Wyk
- [SC-L] Silver Bullet: Cyber War and Richard Clarke
Gary McGraw
- [SC-L] [WEB SECURITY] SATE?
Jim Manico
- [SC-L] [WEB SECURITY] SATE?
Jim Manico
- [SC-L] OWASP AppSec Brasil 2010 - Call for training providers
Lucas Ferreira
- [SC-L] Unreal IRCd backdoor
Gadi Evron
- [SC-L] IEEE: Are Companies Actually Using Secure Development Life Cycles?
Chris Wysopal
- [SC-L] More on Cyber War
Gary McGraw
- [SC-L] One day software security awareness training?
Jeremy Epstein
- [SC-L] Silver Bullet 51: Anup Ghosh
Gary McGraw
- [SC-L] Brainstorm 2020: A Vision for Software Security
Stacy Simpson
- [SC-L] Cyber Security at the White House
Gary McGraw
- [SC-L] Secure Development Related PhD Work
Brad Andrews
- [SC-L] Silver Bullet 52: Paul Kocher
Gary McGraw
- [SC-L] Job Posting: Software Assurance at MITRE
Steven M. Christey
- [SC-L] Python Security
Craig Younkins
- [SC-L] Job Posting: Software Security Assurance Program at Oracle
Rajiv Sharma
- [SC-L] Static code review for iPhone developers?
Kenneth Van Wyk
- [SC-L] 2nd. OWASP Ibero-American Web Applications Security Conference 2010 (IBWAS'10) - Call for Papers
Carlos Serrão
- [SC-L] 2nd. OWASP Ibero-American Web-Applications Security conference (IBWAS’10) - Call for Training
Carlos Serrão
- [SC-L] Two resources
Gary McGraw
- [SC-L] Secure code review/application penetration testing/security architecture positions at Cigital
Joanne Gaitanis
- [SC-L] Computerworld: Opinion - Making apps secure is hard work
Kenneth Van Wyk
- [SC-L] Software Security Crosses the Threshold
Gary McGraw
- [SC-L] Ruxcon 2010 Final Call For Papers
cfp at ruxcon.org.au
- [SC-L] Building Real Software: Has Static Analysis reached its limits?
Kenneth Van Wyk
- [SC-L] [OWASP] APPSEC BRAZIL 2010 - REGISTRATIONS OPEN!
Leonardo Buonsanti
- [SC-L] Recent technical reports from the CERT Secure Coding Initiative
Jonathan Leffler
- [SC-L] SB53: Richard Bejtlich
Gary McGraw
- [SC-L] Remediation - The Game
Timothy Champagne
- [SC-L] Agile (Scrum) best security practices and experiences?
Jari Pirhonen
- [SC-L] Agile (Scrum) best security practices and experiences?
Jari Pirhonen
- [SC-L] Apple's iOS app review guidelines
Kenneth Van Wyk
- [SC-L] Solution for man-in-the-browser
smurray1
- [SC-L] [Fwd: Re: Solution for man-in-the-browser]
smurray1
- [SC-L] PHP IPS
modversion
- [SC-L] IEEE Computer: Software Assurance
Gary McGraw
- [SC-L] Wanna analyze a real voting system? Open season on DC's Internet pilot system
Jeremy Epstein
- [SC-L] informIT: Stuxnet = hard core software security
Gary McGraw
- [SC-L] Website Security Statistics Reports Abound
Arian J. Evans
- [SC-L] SB54: Marc Donner
Gary McGraw
- [SC-L] SB47 (Greg Morrisett) transcript published
Gary McGraw
- [SC-L] DC voting experiment hacked
Jeremy Epstein
- [SC-L] IBWAS'10 CfTraining - Deadline Approaching
Carlos Serrão
- [SC-L] IBWAS'10 CfP - Deadline Extension
Carlos Serrão
- [SC-L] OWASP ESAPI for Java v2.0 rc10
Jim Manico
- [SC-L] Java: the next platform-independent target
Benjamin Tomhave
- [SC-L] Java: the next platform-independent target
Steven M. Christey
- [SC-L] Classification/Enumeration of Software Defect Mitigations
Steven M. Christey
- [SC-L] ISO/IEC 27034 application security guideline
Kenneth Van Wyk
- [SC-L] Colin Angle interview
Gunnar Peterson
- [SC-L] informIT: Technology transfer
Gary McGraw
- [SC-L] Adobe
James Manico
- [SC-L] OWASP CSRFGuard
Jim Manico
- [SC-L] Silver Bullet 55: Deb Frincke
Gary McGraw
- [SC-L] Improving the Stanford clickjacking defense.....
Jim Manico
- [SC-L] DHS Cyber Security BAA announcements related to software assurance
Steven M. Christey
- [SC-L] SecAppDev 2011
Johan Peeters
- [SC-L] TDD and Secure Development
Colin Cassidy
- [SC-L] Looking for OWASP members to have free web meetings with and work on source code assessments and web penetration testing
Matt Parsons
- [SC-L] Cyber Policy and Cyberwarmongering
Gary McGraw
- [SC-L] Report Standardization to video and unit tests
Matt Parsons
- [SC-L] Silver Bullet 56: Sammy Migues
Gary McGraw
- [SC-L] RSnake's final post
Benjamin Tomhave
- [SC-L] Cross Site Request Forgery and how to find it in the wild with 02
Matt Parsons
- [SC-L] Backdoors in custom software applications
Sebastian Schinzel
- [SC-L] [WEB SECURITY] Re: Backdoors in custom software applications
Prasad N Shenoy
- [SC-L] Q: SQL Query Sanitizer Library?
Jeffrey Walton
- [SC-L] informIT: Efficiency and effectiveness of software security practices
Gary McGraw
- [SC-L] IPSec Stack Compromise
Jeffrey Walton
Last message date:
Fri Dec 31 21:53:08 EST 2010
Archived on: Sat Jan 1 19:52:08 EST 2011
This archive was generated by
Pipermail 0.09 (Mailman edition).