Journals

CodeBreakers Journal
Assembly Programming Journal

Journal Issues

Vol.5, No.1, 2008
Vol.4, No.2, 2007
Vol.4, No.1, 2007
Vol.3, No.2, 2006
RECON2006 Conf. Proc.
Vol.3, No.1, 2006
RECON2005 Conf. Proc.
Vol.2, No.1, 2005
Vol.1, No.2, 2004
Vol.1, No.1, 2004

Statistics

Members: 1927
News: 293
Web Links: 1
Visitors: 4053169

Who's Online

Damn Vulnerable LinuxDamn Vulnerable Linux (DVL) is a Linux-based (modified Damn Small Linux) tool for IT-Security & IT-Anti- Security and Attack & Defense. [CLICK HERE FOR MORE INFOS! ]

Featured Conference Video

T16-Recon2006-Joe_Stewart-OllyBonE.gif OllyBone - Semi-Automatic Unpacking on IA-32. View the conference video here!
Home arrow Articles - White Hat Methods arrow Conference Proceedings arrow Syllogistic Application Testing
Syllogistic Application Testing
User Rating: / 0
PoorBest 
Written by Robert E. Lee   
Side Story
Auditing Source Code

The objective of the talk is to understand the common problems when developing code written in C/C++. It can be used as starting point to identify security problems when writing applications. The overall focus will be on the prevention of security vulnerabilities and the implementation of technical countermeasures.

Reviewing code to find vulnerabilities is becoming more and more common. Reviewing code is not only useful from a developers point of view but also from an attacker's point of view.
Read More >>



Most of what the industry is providing in "black box" application security testing today is invalid. This talk will attempt to demonstrate ways we can be more consistant, more thorough, and more honest about the results from "black box" application security testing.

At this talk we will provide insights we've learned from performing application testing, writing application testing tools, and the OSSTMM (3.0) methodology for for application testing.

This will be the first public demonstration of the Cruiser web application testing tool. Download: pdf Syllogistic Application Testing