[Owasp-codereview] Vulnerabilities Animated Clips

Maty Siman maty at checkmarx.com
Mon Mar 1 06:53:52 EST 2010


One of the biggest challenges of the security community is to build true
SDLC (Secure development Life Cycle).

The biggest obstacle is that application developers at large lack the
know-how and motivation to address application risk.

At Checkmarx labs we thought that a new approach to application developers
might help them cross the barrier.

We have developed as a pilot including two short animated clips that should
help developers understand a security flaw, how it can be detected and
consequently prevented.

We built one clip for SQL Injection and another for Parameter Tampering -
limited up to 5 minutes each.

 

We would appreciate feedback from the OWASP community whether the effort is
meaningful and should it be extended.

Please feel free to use the clips freely.

 

The clips can be found at: 

SQL Injection : http://www.youtube.com/watch?v=vjDrseRLyuA
<http://www.youtube.com/watch?v=vjDrseRLyuA&hd=1> &hd=1

Parameter Tampering: http://www.youtube.com/watch?v=l5LCDEDn7FY
<http://www.youtube.com/watch?v=l5LCDEDn7FY&hd=1> &hd=1

 

Yours, 

 

Maty Siman , CISSP

CTO

Checkmarx

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-codereview/attachments/20100301/e40cfb1c/attachment.html 


More information about the Owasp-codereview mailing list