[Owasp-ireland] Security Testing issue of Testing Experience Magazine published
eoin.keary at owasp.org
Tue Jun 2 06:22:56 EDT 2009
This sounds very interesting. Is this magazine focusing on security or
application testing in general?
>From experience anti virus is a very useful layer in preventing an internal
attack i.e. Planting stealth software on target PC's with the aim of
obtaining domain controller credentials.
In many cases if the enterprise has decent anti virus controls enabled the
ability for an internal attacker to proliferate malware internally with the
aim to accessing tangible data which could be used for identify theft or to
sell on the black market is reduced, the attack footprint is reduced.
Would you like to present at a chapter meeting or at the OWASP Ireland
event in September? Send me an email offline if you wish to do so.
Do you have empirical data on your research which you can share?
2009/6/1 Ventuneac, Marian R. <Marian.Ventuneac at ps.net>
> Hi Eoin,
> The Security Testing issue of Testing Experience Magazine was published few
> days ago. Including various articles on Security Testing referring OWASP
> resources, the magazine can be accessed at the following URL:
> While I also contributed with an article on 'Testing the Enterprise
> Security: Anti-Spam and Anti-Virus Solutions', this summarises some of the
> work I recently did in collaboration with Data Communication Security
> Laboratory research group (University of Limerick) on testing and improving
> the application security of several high-profile Anti-Spam/Anti-Virus
> enterprise solutions. This could also make the subject of a potential OWASP
> presentation within the Irish chapter.
> The Testing Experience guys also plan to publish from October a new
> magazine on Application Security, called 'Security Acts'.
> Marian Ventuneac
> Senior Technical Consultant PhD MEng BSc CS
> Perot Systems
> Block I, International Science Centre,
> National Technology Park,
> mobile: +353 (0)86 1074977
> e-mail: marian.ventuneac at ps.net
> IMPORTANT NOTICES:
> Privileged, confidential and/or copyright information may be contained in
> this e-mail.
> This e-mail is for the use only of the intended addressee. If you are not
> the intended addressee,
> or the person responsible for delivering it to the intended addressee, you
> not copy, forward, disclose or otherwise use it or any part of it in any
> way whatsoever.
> To do so is prohibited and may be unlawful.
> If you receive this e-mail by mistake please advise the sender immediately
> using the reply facility in your e-mail software.
> Perot Systems may monitor the content of e-mails sent and received via
> its network for the purposes of ensuring compliance with its policies and
> This message is subject to and does not create or vary any contractual
> relationship between Original Solutions Limited (a Perot Systems Company)
> and you.
> Original Solutions Limited (a Perot Systems Company)
> Registered in Ireland No. 371589
> Registered Office: Block I, International Science Centre, National
> Technology Park, Limerick, Ireland.
> Owasp-ireland mailing list
> Owasp-ireland at lists.owasp.org
Eoin Keary CISSP CISA
OWASP Code Review Guide Lead Author
OWASP Ireland Chapter Lead
OWASP Global Committee Member (Industry)
Quis custodiet ipsos custodes
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-ireland