SANS is conducting another Application Security summit on February 4 and 5 in San Francisco. The event will feature talks by Gary McGraw, Michael Howard and David Rice as well as several user and vendor panels. Attendees will learn what works and what does not work in Application Security. In order to help promote the [...]
Today, SANS and MITRE released their 2009 Top 25 Most Dangerous Programming Errors list. The 2009 CWE/SANS Top 25 Most Dangerous Programming Errors is a list of the most significant programming errors that can lead to serious software vulnerabilities. They occur frequently, are often easy to find, and easy to exploit. They are dangerous because [...]
Last week SANS held two WhatWorks summits in Las Vegas. One covered penetration testing and ethical hacking, and the other covered web application security. Jeremiah Grossman was the keynote speaker for the web application security summit, and he posted his post-summit thoughts on his blog. The format favored enterprise speakers rather than experts, which [...]