 |
||
Total Website Security |
||
|
||
|
|
|
|
|
Videos & Presentations :: Latest Website Security Statistics :: March 28, 2008 :: NEW :: WhiteHat Security founder and CTO, Jeremiah Grossman, will present new findings from the latest WhiteHat Web Application Security Statistics Report. Based on WhiteHat’s aggregate data from hundreds of Web application assessments, Mr.Grossman's presentation will provide a look at the top vulnerabilities that attackers are exploiting to break into commercial websites. WhiteHat Security is the only source that can track and present a comprehensive Website Security Statistics Report. Software-as-a-Service :: January 24, 2008WhiteHat Security CEO, Stephanie Fohn, will dicuss the strategic advantage of employing a Software (or Security)-as-a-Service (SaaS) model for website vulnerability management. She will examine why a SaaS solution is the only practical and secure approach to find and fix vulnerabilities that attackers are exploiting to break into websites. Ms. Fohn will also describe how a SaaS solution extends beyond vulnerability discovery and becomes the basis for an effective ongoing remediation process and implementing web security best practices. In addition, former Security Architect, PayCycle, Inc., Anurag Agarwal will discuss his experience in adopting and managing a website vulnerability management SaaS.
Industry Roundtable Webinar :: November 8, 2007Listen to a light and humourous conversation as website security industry experts discuss current topics regarding website vulnerability. Jeremiah Grossman, WhiteHat Security founder and CTO, Robert “RSnake” Hansen, CEO of SecTheory, Chris Paggen, senior manager, application delivery and network security business unit at Cisco, and Jordan Wiens, Security Beat Editor at Network Computing, will take on today’s hot button issue of website security in a unscripted one-hour event. Business Logic Flaws Webinar :: October 31, 2007 Session handling, credit card transactions, and password recovery are just a few examples of Web-enabled business logic processes that malicious hackers have abused to compromise major websites. These types of vulnerabilities are routinely overlooked during QA because the process is intended to test what a piece of code is supposed to do and not what it can be made to do. The other problem(s) with business logic flaws is scanners can’t identify them, IDS can’t detect them, and Web application firewalls can’t defend them. Hard hitting trifecta. Plus, the more sophisticated and Web 2.0 feature-rich a website, the more prone it is to have flaws in business logic. Hacking Intranet Websites from the Outside (Take 2) :: "Fun with and without JavaScript Malware" Webinar :: August 21, 2007 Hear Jeremiah Grossman, WhiteHat Security founder and CTO, and Robert Hansen (RSnake), CEO of SecTheory deliver their internationally acclaimed presentation, Hacking Intranet Websites from the Outside (Take 2) – "Fun with and without JavaScript Malware." The ultimate goal of this presentation is to demonstrate many of the latest Web application security attack techniques and to highlight best practices for complete website vulnerability management. Cross Site Request Forgery Webinar :: July 24, 2007Attackers have begun to actively exploit CSRF vulnerabilities across the Web. Why now? Because its incredibly easy and the vast majority of websites are vulnerable to it. How do you stop an attack originating from a “real user,” who appears to be properly logged-in, and making a legitimate request - except that they did not intend to make the request? Hear WhiteHat Security founder and CTO, Jeremiah Grossman present "Cross-Site Request Forgery: The Sleeping Giant." Other Videos :• Top 10 Things You Need to Know about Website Security WhiteHat Sentinel and F5 WAF Integration :: Watch our brief Quicktime movie (no sound). Presentation PDF Files :: • Business Logic Flaws ››› - October 31, 2007 (3.83 MB PDF) |
:: Quicktime Movies :: |
|
||
|
||
|
||
|
||
" require a viewer from WebEx available.
