[Owasp-boston] OWASP Boston Wed. 4/11 Mtg
Jim.Weiler at starwoodhotels.com
Thu Apr 5 22:49:47 UTC 2012
Just a reminder - Wed. April 11, MS Waltham
Topic - Gray, the New Black: Gray-Box Vulnerability Testing
Over the years, two key techniques have emerged as the most effective
for finding security vulnerabilities in software: Dynamic Application
Security Testing (DAST) and Static Application Security Testing (SAST).
While DAST and SAST each possess unique strengths, the "Holy Grail" of
security testing is thought to be "hybrid" - a technique that combines
and correlates the results from both testing methods, maximizing the
advantages of each. Until recently, however, a critical element has been
missing from first generation hybrid solutions: information about the
inner workings and behavior of applications undergoing DAST and SAST
This presentation will introduce you to the next generation of hybrid
security analysis - what it is, how it works, and the benefits it
offers. It will also address (and dispel) the claims against hybrid, and
leave you with a clear understanding of how the new generation of hybrid
will enable organizations to resolve their most critical software
security issues faster and more cost-effectively than any other
available analysis technology.
Pizza will be sponsored by HP / Fortify
Jim Weiler CISSP CSSLP GSSP - Java
Application Security Architect
Starwood Hotels 1505 Washington St. Braintree MA. 02184
desk - 781 356 0067
mobile - 781 654 6048
This electronic message transmission contains information from the Company that may be proprietary, confidential and/or privileged.
The information is intended only for the use of the individual(s) or entity named above. If you are not the intended recipient, be
aware that any disclosure, copying or distribution or use of the contents of this information is prohibited. If you have received
this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" field.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-boston