[OWASP-ESAPI] ESAPI At JaSIG
Dave Wichers
dave.wichers at owasp.org
Thu Jan 21 15:57:52 EST 2010
You should check out the ESAPI Swingset app if you haven't looked at it yet.
It shows examples of unsafe and then safe pages using ESAPI. Its not
complete so if you want to complete it in prep for your class, that would be
great for both your class and the ESAPI project.
-Dave
From: owasp-esapi-bounces at lists.owasp.org
[mailto:owasp-esapi-bounces at lists.owasp.org] On Behalf Of kuai hinojosa
Sent: Thursday, January 21, 2010 2:53 PM
To: Neil Matatall
Cc: owasp-esapi at lists.owasp.org
Subject: Re: [OWASP-ESAPI] ESAPI At JaSIG
Hey Neil,
I thought we could use what you used last year (WegGoat workshop) and add
ESAPI to show how we could mitigate the vulnerabilities. If you still have
those materials send them my way we can work with that at the GEC.
Thanks,
Kuai
On Jan 21, 2010, at 2:30 PM, Neil Matatall wrote:
http://www.ja-sig.org/jasigconf/popAbstract.jsp?conf_id=jasig17
<http://www.ja-sig.org/jasigconf/popAbstract.jsp?conf_id=jasig17&id=29a67373
> &id=29a67373
http://www.ja-sig.org/jasigconf/popAbstract.jsp?conf_id=jasig17
<http://www.ja-sig.org/jasigconf/popAbstract.jsp?conf_id=jasig17&id=6b3f8cb>
&id=6b3f8cb
If anyone would like to suggest material, I'm game.
--
--
Neil
_______________________________________________
OWASP-ESAPI mailing list
OWASP-ESAPI at lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-esapi
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-esapi/attachments/20100121/76b5e4c6/attachment.html
More information about the OWASP-ESAPI
mailing list