[OWASP-ESAPI] ESAPI At JaSIG
Neil Matatall
neil at owasp.org
Thu Jan 21 16:03:17 EST 2010
Yeah, I've always wanted to see a complete Swingset app, I just haven't had
the time. I can probably update a few, but maybe we should have a Swingset
sprint in the future? Not just for my purposes, but for the sake of the
project.
Mike: I will absolute advertise the other versions! Multiple language
support is critical...heck, is a small possibility that I might start work
on ESAPIonRails in the next year or so
On Thu, Jan 21, 2010 at 12:57 PM, Dave Wichers <dave.wichers at owasp.org>wrote:
> You should check out the ESAPI Swingset app if you haven’t looked at it
> yet. It shows examples of unsafe and then safe pages using ESAPI. Its not
> complete so if you want to complete it in prep for your class, that would be
> great for both your class and the ESAPI project.
>
>
>
> -Dave
>
>
>
> *From:* owasp-esapi-bounces at lists.owasp.org [mailto:
> owasp-esapi-bounces at lists.owasp.org] *On Behalf Of *kuai hinojosa
> *Sent:* Thursday, January 21, 2010 2:53 PM
> *To:* Neil Matatall
> *Cc:* owasp-esapi at lists.owasp.org
> *Subject:* Re: [OWASP-ESAPI] ESAPI At JaSIG
>
>
>
> Hey Neil,
>
>
>
> I thought we could use what you used last year (WegGoat workshop) and add
> ESAPI to show how we could mitigate the vulnerabilities. If you still have
> those materials send them my way we can work with that at the GEC.
>
>
>
> Thanks,
>
>
>
> Kuai
>
> On Jan 21, 2010, at 2:30 PM, Neil Matatall wrote:
>
>
>
>
> http://www.ja-sig.org/jasigconf/popAbstract.jsp?conf_id=jasig17&id=29a67373
> http://www.ja-sig.org/jasigconf/popAbstract.jsp?conf_id=jasig17&id=6b3f8cb
>
> If anyone would like to suggest material, I'm game.
>
> --
>
> --
>
> Neil
> _______________________________________________
> OWASP-ESAPI mailing list
> OWASP-ESAPI at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-esapi
>
>
>
--
--
Neil
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-esapi/attachments/20100121/69386b46/attachment-0001.html
More information about the OWASP-ESAPI
mailing list