SEARCH RESULTS
 
Showing 1-10 of 23 records
 
Expand article

HNS Podcast: Jeremiah Grossman's top security conferences

2008-05-05 19:25:56 by Editor in Help Net Security - Articles
 
Jeremiah Grossman, the founder and Chief Technology Officer of WhiteHat Security attends quite a number of security conferences around the globe. A couple of weeks ago we had a chat with him and in th
 
Tags: security conferences, jeremiah grossman, chief technology officer, whitehat security attends, weeks ago, chat, couple, founder, globe
 
 
 
 
Expand article

Top Web Hacks For 2007 - Call For Links

2008-01-08 21:57:26 by RSnake in ha.ckers.org web application security lab
 
...Jeremiah, Zeno and I threw together the list for the top web hacks for 2006. It was a glorious age, where I had lots more spare time on my hands than I do now. Alas Anyhow, instead of us giving our opinions to you, we felt it was far better for you to give your opinions to us. So Jeremiah threw up an abbreviated list of potential candidates...
 
Tags: top web hacks, jeremiah, opinions, list, spare time, webappsec field, include hacks, glorious age, potential
 
 
 
 
Expand article

Maslow's heirarchy of security posture?

The Article has images
2007-07-08 17:22:32 by RaviC in Musings on Information Security
...Jeremiah. Nice blog post Jeremiah I see a Maslow's heirarchy in the evolution of security posture of a company. Each posture is determined by the line of business [type of industry] and the size of business [start-up or mid-size or large publicly traded 1. Don't Care for Security - These are early stage companies that don't have time for...
 
Tags: security posture, basic security posture, security, basic security, security practices, handle security incidents, security exists, security components, security program
 
 
 
 
Expand article

Tools Need People!!

2008-01-30 11:55:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...Jeremiah Grossman here . It is obvious, some would say painfully so, but many, many sadly don't GET IT: tools don't solve problems, people use tools to solve problems Excerpt: " ... I stopped short and said, Thats never going to work! A little stunned he asked, Why not? " ( read more There is also a side conclusion: if you don't plan to...
 
Tags: tools, solve, jeremiah grossman, people, sadly, excerpt, post, money, conclusion
 
 
 
 
Expand article

ScanAlert - XSS is Cool with Us

2008-01-21 20:58:57 by Bill in Grumpy Security Guy
 
...Jeremiah and Jericho provide more great commentary Related Posts McAfee Acquires ScanAlert, I Go WTF Ok I didn't see this one coming but when I think about it, it makes some sense. On one side you hav Top 10 Security Stories of 2007 This is my list of the Top 10 security stories of 2007. Since I am a web application security guy th My Review...
 
Tags: scanalert, xss, people, crazy people, mcafee acquires scanalert, security stories, bad people, xss vulnerabilities, underground security resources
 
 
 
 
Expand article

Catch not-so-smart hackers to send message to smart hackers

2007-05-10 07:00:33 by RaviC in Musings on Information Security
 
...Jeremiah's thoughtful blog post about "How to check if your WebMail account has been hacked". A smart hacker who has hacked say your gmail account would not be dumb enough to open a spurious looking email in the first place, moreover they would get around by choosing the option of not displaying images Smart hackers get away most of the time....
 
Tags: not-so-smart hackers, hackers, not-so-smart, smart, smart hackers, employee, smart-deviant employee, hackers interact, smart hacker
 
 
 
 
Expand article

Website Security

2007-03-16 17:59:11 by RaviC in Musings on Information Security
 
...Jeremiah Grossman shared some interesting stats about vulnerabilities in web application. This was an event packed with lot of takeaways and also I met several interesting security professionals Here are some salient features about website (or web application) security 1. Web was not inherently designed to be secure ground up 2. Platforms are...
 
Tags: security, web, web application, security professionals, web programmers, business logic vulnerabilities, vulnerabilities, shorter release cycles, security holes
 
 
 
 
Expand article

Report from InfoSec World

The Article has images
2008-03-11 08:23:19 by HASH0x8b066f4 in StillSecure, After All These Years
...Jeremiah Grossman, Jordan Wiens, Bobby Dominguez, etc, etc. Another person I had a chance to catch up with and get to know much better is Ofir Arkin from Insightix. Ofir always has something interesting to say and we spent some time with the SC Magazine folks talking shop. Speaking of SC Magazine, they are in full swing getting ready for...
 
Tags: security, security world, magazine folks, magazine, folks, security event, conference, infosec world conference, ofir arkin
 
 
 
 
Expand article

The Big Announcement

2008-03-13 00:03:25 by Bill in Grumpy Security Guy
 
...Jeremiah actually has been pulling me into liking this idea for a very long time. I hated it at first. I mean WAFs, bleh. Plus I mean didnt we already try scanners + WAFs before? Oh yeah the total trainwreck that was AVDL.So one thing I failed to realize was that Jeremiahs approach is a bit different and when combined with WhiteHat Sentinel...
 
Tags: vulnerabilities asap, vulnerabilities, app, web app, web application vulnerabilities, vulnerability, sentinel, business, default deny policy
 
 
 
 
Expand article

Report from InfoSec World

The Article has images
2008-03-11 09:23:03 by ashimmy in StillSecure, After All These Years
...Jeremiah Grossman, Jordan Wiens, Bobby Dominguez, etc, etc. Another person I had a chance to catch up with and get to know much better is Ofir Arkin from Insightix. Ofir always has something interesting to say and we spent some time with the SC Magazine folks talking shop. Speaking of SC Magazine, they are in full swing getting ready for...
 
Tags: security, security world, magazine folks, magazine, folks, security event, conference, infosec world conference, ofir arkin</