Informal Application Security Testing Session

The incredibly awesome Bill Matthews will host this evening session. Bring your laptop!
We’d start with a quick discussion on the differences between application security testing and traditional view of penetration testing then move on modelling threats as a means to generate test ideas (as a mind map) against specific parts of a target application. We’d then pick one or two test ideas and explain the techniques that we might use to test the defences before optionally letting people loose on the target application to try out these techniques and any other techniques they might know and I’d be around to answer any questions or help with other techniques people are interested in.
I’d imagine that the initial talk part will be about 30 mins but practice can be most of the night if wanted…

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>