resourcesCompany News & Events

 

Recent News & Upcoming Events

Past News & Events

 
MAY 15, 2013 | Drew Porter and Andrew Wilson will be presenting on the latest IT security trends at the SIM Arizona Chapter Meeting on May 15th, 2013 at Arizona State University in Tempe, AZ.
 
 
 
MAY 14, 2013 | Brenda Larcom will be presenting Designing Data Validation at the Security Development Conference May 14th, 2013 in San Francisco, CA.
 
 
 
MAY 7, 2013 | TechNews World – IE8 Exploit Had US Nuke Workers in Its Sights Joe DeMesy is quoted in this article regarding the recent IE8 exploit : TechNews World – IE8 Exploit Had US Nuke Workers in Its Sights.
 
 
 
APR 18, 2013 | Birgit Mullen will be presenting Spring Cleaning for Active Directory at the ISSA – Puget Sound Chapter, April 18, 2013 at the Community Center in Mercer Island, WA.
 
 
 
 
APR 14, 2013 | Francis Brown will be presenting Using Google to Find Vulnerabilities in Your IT Environment at InfoSec World Conference & Expo 2013 , April 14, 2013 at the Walt Disney World Swan & Dolphin in Orlando, FL.
 
 
 
MAR 28, 2013 | DarkReading.com – Too Scared To Scan Vincent Liu is quoted in this DarkReading article DarkReading.com – Too Scared To Scan
 
 
 
 
MAR 22, 2013 | Joe DeMesy will be presenting Fire and Forget Password Cracking at CactusCon 2013 on March 22, 2013 at Dave & Busters in Tempe, AZ.
 
 
 
MAR 21, 2013 | ThreatPost.com – Why Watering Hole Attacks Work Candis Orr appears in this ThreatPost.com article with a great analogy for watering hole attacksThreatPost.com – Why Watering Hole Attacks Work.
 
 
 
 
MAR 11, 2013 | DarkReading.com – Better Patching Priority Vincent Liu discusses his ideas on avoiding security risks by properly prioritizing your patches in this DarkReading blog post DarkReading.com – Better Patching Priority.
 
 
 
FEB 27, 2013 | Francis Brown will be participating in the speaker panel MASH-W24 - Debate: Does Security Awareness Training Actually Improve Enterprise Security? at the RSA Conference USA 2013, Feb 27, 2013 at the Moscone Center in San Francisco, CA.
 
 
 
 
 
 
DEC 11, 2012 | SecurityWeek.com - Silly Kiddie, Exploits Are For Free Vincent Liu discusses the exploit marketplace in his article SecurityWeek.com - Silly Kiddie, Exploits Are For Free.
 
 
 
DEC 10, 2012 | Point2Security - A Primer for Securing the Startup Christie Grabyan's BayThreat 2012 presentation Where to Start When Securing a Startup? was highlighted in the article Point2Security - A Primer for Securing the Startup.
 
 
 
DEC 7, 2012 | Christie Grabyan will be presenting Where to Start When Securing a Startup? at BayThreat 2012, Dec 7, 2012 in Sunnyvale, CA.
 
 
 
NOV 18, 2012 | Dark Reading - Tech Insight: Better Defense Through Open Source Intelligence Dark Reading article highlighted SearchDiggity as a must have tool for open source intelligence gathering (OSINT).
 
 
 
NOV 1, 2012 | Francis Brown will be presenting Tenacious Diggity: Skinny Dippin in a Sea of Bing at the IT Audit & Controls Conference (ITAC) 2012, Nov 1, 2012 at the JW Marriott Camelback Inn in Scottsdale, AZ.
 
 
 
OCT 30, 2012 | Francis Brown will be presenting Tenacious Diggity: Skinny Dippin in a Sea of Bing at Hacker Halted USA 2012, Oct 30, 2012 at the Intercontinental Hotel in Miami, FL.
 
 
 
OCT 29, 2012 | Francis Brown will be participating in the speaker panel How to Make End Users Smarter About Security at Hacker Halted USA 2012, Oct 29, 2012 at the Intercontinental Hotel in Miami, FL.
 
 
 
OCT 19, 2012 | Rob Ragan & Oscar Salazar will be presenting Attack Chaining : Advanced Maneuvers For Hack Fu at Security B-Sides ATL , October 19, 2012 in Atlanta, GA.
 
 
 
OCT 10, 2012 | Rob Ragan & Oscar Salazar will be presenting Attack Chaining: Advanced Maneuvers For Hack Fu at the KSU Information Technology Services 2012 Cyber Security Awareness Day , October 10, 2012 in the Clendenin Room 1009 at Kennesaw State University in Kennesaw, GA.
 
 
 
SEP 25, 2012 | Brenda Larcom will be presenting Writing Security Objectives at the IEEE International Requirements Engineering Conference 2012, September 25, 2012 at the Gleacher Center in Chicago, IL.
 
 
 
SEP 4, 2012 | The ISSA Journal - SearchDiggity: Dig Before They Do Stach & Liu's Google Hacking Diggity Project was featured in the toolsmith article SearchDiggity: Dig Before They Do, found in the September 2012 edition of The ISSA Journal.
 
 
 
AUG 29, 2012 | Francis Brown will be presenting Tenacious Diggity at the ISSA/ISACA Phoenix - 2012 Phoenix Summer Security & Audit Conference, Aug 29, 2012 at the Desert Willow Conference Center in Phoenix, AZ.
 
 
 
AUG 19, 2012 | ToolsWatch.org - Blackhat USA 2012: Interview with Stach & Liu Team about Google Diggity Project ToolsWatch.org caught Fran Brown and Rob Ragan amongst the action at Black Hat USA 2012 for a quick video interview about what is new and upcoming for the Diggity search engine hacking tools.
 
 
 
AUG 10, 2012 | SecurityWeek.com - "Search Diggity" Project Brings Informative and Creative Hacking Tools SecurityWeek.com showcased some of the exciting new additions to the Google Diggity Hacking Project's suite of search engine hacking tools in their article, "Search Diggity" Project Brings Informative and Creative Hacking Tools.
 
 
 
 
 
 
 
 
JUL 29, 2012 | Francis Brown and Rob Ragan will be presenting Tenacious Diggity: Skinny Dippin in a Sea of Bing at DEF CON 20 (2012), July 29, 2012 at the Rio Hotel in Las Vegas, NV.
 
 
 
 
JUL 25, 2012 | Francis Brown and Rob Ragan will be presenting Tenacious Diggity: New Google Hacking Diggity Suite Tools at the Black Hat USA 2012 - Tool Arsenal, July 25 - 26, 2012 at the Caesars Palace in Las Vegas, NV.
 
 
 
MAY 31, 2012 | Rob Ragan and Oscar Salazar will be presenting on the topic of Advanced Attack Chaining during the OWASP Atlanta meeting on May 31, 2012 at 6:00 PM EST. Slides can be downloaded here: OWASP Atlanta – Attack Chaining Advanced Maneuvers – May 2012 – Slides
 
 
 
MAY 23, 2012 | Francis Brown will be presenting the Pulp Google Hacking at ISSA Tucson on Wednesday, May 23rd at the Tucson ITT Technical Institute in Tucson, AZ.
 
 
 
MAY 15, 2012 | Francis Brown will be holding a 3 hour pre-summit seminar on Google Hacking for the ISSA Los Angeles' Fourth Annual Information Security Summit, May 15 at the Hilton Universal City in Universal City, CA.
 
 
 
MAY 15, 2012 | Christie Grabyan will be speaking on a panel for SDL & Regulatory Compliance at the inaugural Security Development Conference, May 15-16, 2012 at the Fairmont Hotel in Washington, D.C.
 
 
 
MAY 8, 2012 | Francis Brown will be presenting Pulp Google Hacking – The Next Generation Search Engine Hacking Arsenal at TakeDownCon Dallas 2012, May 8 at The Westin Park Central Dallas in Dallas, TX.
 
 
 
MAY 4, 2012 | Francis Brown will be presenting on BYOD and Mobile Security Issues at an IT Partners event on Friday, May 4th at the IPic Theaters at Scottsdale Quarte in Scottsdale, AZ.
 
 
 
MAY 2, 2012 | Francis Brown will be presenting Pulp Google Hacking as a special guest speaker at the monthly CISO/ISO Security Education Forum for the State of Arizona on Wednesday, May 2nd at the Arizona Strategic Enterprise Technology (ASET) Office building in Phoenix, AZ.
 
 
 
APR 2, 2012 | Francis Brown and Rob Ragan will be presenting Pulp Google Hacking – The Next Generation Search Engine Hacking Arsenal at InfoSec World 2012, April 2 - 4 at Disney's Contemporary Resort in Orlando, FL.
 
 
 
MAR 14, 2012 | Francis Brown will be speaking at the UCLA Anderson IS Associates' Spring Meeting on Wednesday, March 14 at UCLA Anderson, Gold Hall, Room B209 in Los Angeles, CA.
 
 
 
MAR 5, 2012 | Fran Brown authors the InformationWeek/Dark Reading report InformationWeek - Using Google to Find Vulnerabilities In Your IT Environment. In it, we will examine a slew of new tools and techniques that will allow security professionals to leverage Google, Bing, Baidu and other open search interfaces to proactively track down and eliminate sensitive information disclosures and vulnerabilities in their public systems. We also take a look at defensive tools designed to pull thousands of real-time RSS updates from search engines to provide users with alerts—a sort of intrusion detection system (IDS) for Google hacking.
 
 
 
FEB 28, 2012 | Brenda Larcom will be presenting on the topic of Threat Modeling Using Trike on Tuesday, Feb 28th at the Mozilla Security Blog in Mountain View, CA.
 
 
 
FEB 22, 2012 | Francis Brown will be presenting the SharePoint Hacking Diggity Project at OWASP Los Angeles on Wednesday, February 22th at 900 Corporate Pointe, Culver City, CA 90230.
 
 
 
FEB 15, 2012 | Francis Brown will be presenting the Pulp Google Hacking at ISSA Los Angeles on Wednesday, February 15th at 1911 West Sunset Blvd, Los Angeles, CA 90026.
 
 
 
DEC 10, 2011 | Kevin Lawrence will be presenting Putting Your Logs on a Diet at BayThreat 2011 on Saturday, December 10th at the Hacker Dojo, in Mountain View, CA.
 
 
 
DEC 9, 2011 | Francis Brown will be presenting Pulp Google Hacking – The Next Generation Search Engine Hacking Arsenal at BayThreat 2011 on Friday, December 9th at the Hacker Dojo, in Mountain View, CA.
 
 
 
NOV 3, 2011 | Francis Brown will be presenting Pulp Google Hacking – The Next Generation Search Engine Hacking Arsenal at the 2011 UAT Tech Forum on Thursday, November 3rd at the University of Advancing Technology (UAT), in Tempe, AZ.
 
 
 
OCT 31, 2011 | Vincent Liu quoted in USA Today - Uptick in tainted ads hurts consumers, advertisers on the topic of infected online advertisements.
 
 
 
OCT 26, 2011 | Francis Brown will be presenting Pulp Google Hacking – The Next Generation Search Engine Hacking Arsenal at Hacker Halted USA 2011, October 21 - 27 at the Intercontinental Hotel in Miami, FL.
 
 
 
OCT 26, 2011 | Rob Ragan will be presenting Pulp Google Hacking – The Next Generation Search Engine Hacking Arsenal at the 2011 Kennesaw State University - Annual Cyber Security Awareness Day on Wednesday, October 26th at Kennesaw State University in the Student Center, University Room A., in Kennesaw, GA.
 
 
 
OCT 23, 2011 | Francis Brown is featured in a Cambridge Community Television (CCTV) news segment called It Takes a Hacker to Catch a Hacker - Boston Application Security Conference Part 3, where he discusses Stach & Liu's search engine hacking tool arsenal known as the Google Hacking Diggity Project.
 
 
 
OCT 11, 2011 | Francis Brown is featured in a Cambridge Community Television (CCTV) news segment called How to Hack: Computer Security Experts Demonstrate Techniques, where he demonstrates how to use Google CodeSearchDiggity to exploit Amazon cloud accounts.
 
 
 
OCT 8, 2011 | Francis Brown will be presenting Pulp Google Hacking – The Next Generation Search Engine Hacking Arsenal at the 2011 OWASP Boston Application Security Conference (BASC) on Saturday, October 8th at the Microsoft New England Research and Development Center (NERD), in Boston, MA.
 
 
 
OCT 3, 2011 | Francis Brown will be presenting Pulp Google Hacking – The Next Generation Search Engine Hacking Arsenal to OWASP Philadelphia on Monday, October 3rd from 6:30 - 8:00 PM at the University of Pennsylvania, Fisher-Bennett Hall - 231 in Philadelphia, PA.
 
 
 
AUG 3, 2011 | Francis Brown and Rob Ragan will be presenting Pulp Google Hacking – The Next Generation Search Engine Hacking Arsenal at Black Hat USA 2011, August 3 - 4 at Caesars Palace in Las Vegas, NV.
 
 
 
JUN 17, 2011 | Brenda Larcom and Eleanor Saitta will be presenting at Designing Data Validation and Turning the World Upside Down, or Threat Modeling a Constitution at ToorCon Seattle, June 17 -19 at Neumos & Seattle Hackerspaces in Seattle, WA.
 
 
 
JUN 16, 2011 | Vincent Liu speaks with Al Jazeera world news on Cyber Security both on live television and also in edited form.
 
 
 
MAY 18, 2011 | Francis Brown will be presenting Lord of the Bing at TakeDownCon, May 18-19 at the Hotel Intercontinental in Dallas, TX. Presentation slides can be downloaded here.
 
 
 
APR 21, 2011 | Francis Brown and Rob Ragan will be presenting the Google Hacking: To Infinity and Beyond – A Tool Story presentation at InfoSec World 2011 on Thursday, April 21st at Disney's Contemporary Resort in Orlando, FL.
 
 
 
APR 5, 2011 | Francis Brown will be presenting Lord of the Bing at the ISSA Phoenix chapter meeting on April 5th at the ITT Technical Institute in Tempe, AZ.
 
 
 
FEB 16, 2011 | Francis Brown and Rob Ragan will be presenting both the Lord of the Bing presentation and the SharePoint Security: Advanced SharePoint Security Tips presentation at HackCon on Wednesday Feb 16th in Oslo, Norway.  
 
 
 
FEB 1, 2011 | Francis Brown will be presenting SharePoint Hacking – Advanced SharePoint Security Tools and Tips to OWASP Phoenix on Tuesday, February 1st at 6:30-7:30pm at the University of Advancing Technology.
 
 
 
OCT 22, 2010 | Rob Ragan will be presenting Lord of the Bing at Hacker Halted 2010, Oct 22-24 at the Hilton Hotel in Singapore. Presentation slides can be downloaded here.
 
 
 
OCT 22, 2010 | Francis Brown will be presenting Lord of the Bing at ToorCon 12, Oct 22-24 at the San Diego Convention Center in San Diego, CA.
 
 
 
OCT 8, 2010 |
Rob Ragan will be presenting Lord of the Bing at Security B-Sides Atlanta, Oct 8 at Think Inc World HQ in Atlanta, GA. Presentation slides can be downloaded here.
 
 
 
OCT 5, 2010 | SharePoint Security: Advanced SharePoint Security Tips and Tools Francis Brown shares his SharePoint security research, new tools/techniques, practical security tips based on experience from past SharePoint security assessments, and common security pitfalls to avoid in SharePoint deployments with the Phoenix Chapter of the ISSA on 05 Oct 2010.
 
 
 
JUL 30, 2010 | Francis Brown and Rob Ragan will be presenting Lord of the Bing: Taking back search engine hacking from Google and Bing at DEF CON 18, July 30 at the Riviera Hotel & Casino in Las Vegas, NV. NOTE: For more information, see The Google Hacking Diggity Project page.
 
 
 
JUL 29, 2010 | Francis Brown and Rob Ragan will be presenting Lord of the Bing: Taking back search engine hacking from Google and Bing" at Black Hat USA 2010, July 29 at Caesars Palace in Las Vegas, NV. NOTE: For more information, see The Google Hacking Diggity Project page.
 
 
 
JUL 20, 2010 | Francis Brown and Rob Ragan share their security research with Forbes.com in Researchers Will Turn Google And Bing Into Web Bug Warning System.
 
 
 
JUN 23, 2010 | Vincent Liu will be presenting "Practical Enterprise Web Application Security" at the HP Technology Forum 2010, June 21 - 24 at the Mandalay Bay Hotel in Las Vegas, NV.
 
 
 
JUN 14, 2010 | Vincent Liu will be presenting The Good, the Bad, and the Ridiculous in Pen Testing at the SANS What Works in Penetration Testing & Vulnerability Assessment Summit 2010, June 14 - 15 at the Hilton Baltimore in Baltimore, MD.
 
 
 
MAY 3, 2010 | Vincent Liu will be presenting Data Exposure, New Approaches to Open Source Intelligence Techniques, and Incident Handling at the Boston OWASP chapter meeting, May 3 at the Microsoft New England Research & Development Center in Cambridge, MA.
 
 
 
APR 21, 2010 | Francis Brown and Rob Ragan will be presenting Google and Beyond: Advanced Search Engine Hacking and Web Based Intelligence Gathering at InfoSec World 2010, April 17 - 23 at the Coronado Springs Resort in Orlando, FL.
 
 
 
MAR 30, 2010 | Vincent Liu will be co-presenting Application Security and Vulnerability with Jason Lish of Honeywell International at the 2010 FAA IT/ISS Partnership and Training Conference, March 29 - April 2 at the Disney Swan and Dolphin Hotel in Orlando, FL.
 
 
 
FEB 4, 2010 | Vincent Liu will be participating on two panel discussions, Lessons Learned From the Trenches and The Business Case for Software Assurance, at the SANS What Works in Application Security Summit 2010, February 4 - 5 at Sheraton Fisherman's Wharf in San Francisco, CA.
 
 
 
DEC 12, 2009 | Rob Ragan and Vincent Liu author The Challenges of Automated Application Assessments in a Web 2.0 World, which discusses the difficulties of properly auditing modern Web 2.0 applications.
 
 
 
JUN 25, 2009 | Vincent Liu will be participating in Jump Start Application Security Initiatives with SaaS, a CSO online webinar about why corporations with seemingly insurmountable application security issues would do well to implement a SaaS solution.
 
 
 
JUN 17, 2009 | Vincent Liu will be presenting Kickstart your Web Application Security Program at HP Software Universe 2009, June 16 to 18 at The Venetian Resort Hotel in Las Vegas, NV.
 
 
 
JUN 2, 2009 | Vincent Liu will present Expert Talk: Real-world Code Review at SANS What Works in Penetration Testing & Web Application Attacks 2009, June 1 - 2 at the Paris Hotel in Las Vegas, NV.
 
 
 
MAY 5, 2009 | Vincent Liu is a featured speaker in Do More with Less, a Hewlett-Packard webinar about how companies can make the most of their existing security budget during the economic downturn.
 
 
 
DEC 13, 2008 | Stach & Liu is honored to be listed as a trusted vendor solution for Application Penetration Testing in the SANS WhatWorks Fall 2008 poster.
 
 
 
OCT 16, 2008 | Vincent Liu will be presenting Real World Code Review - Using the Right Tools in the Right Place at the Right Time at Microsoft Bluehat v8, October 16 - 17 at Microsoft in Redmond, WA.  The presentation is now online here, and the pre-presentation interview is available here.
 
 
 
JUN 16, 2008 | Vincent Liu will be presenting "Effective Application Security: Overcoming 10 Common Obstacles" at HP Software Universe 2008, June 16 - 19 at The Venetian Resort Hotel in Las Vegas, NV.
 
 
 
JUN 3, 2008 | Vincent Liu will be speaking on a panel discussion, Success Stories and Lessons Learned, at the SANS What Works in Web Application Security Summit, June 2 - 3 at the Paris Hotel in Las Vegas, NV.
 
 
 
JUN 2, 2008 | Francis Brown will be participating on a panel discussion, Solution Provider and Vendor Panel: Success Stories and Lessons Learned, at the SANS What Works in Penetration Testing & Ethical Hacking Summit 2008, June 2 - 3 at the Paris Hotel in Las Vegas, NV.
 
 
 
APR 8, 2008 | Vincent Liu authors Effective Software Security: Making the Most of Tools as a guest blogger on the Microsoft TechNet BlueHat blog.
 
 
 
OCT 17, 2007 | Vincent Liu will be presenting Lessons Learned - Implementing an Application Security Program at HP Software's SPICon2007, October 16 - 18 at the Atlanta Marriott Marquis Hotel in Atlanta, GA.
 
 
 
SEP 12, 2007 | Vincent Liu co-authors Effective Controls for Attaining Continuous Application Security Throughout the Web Application Development Life Cycle as part of the SPI Dynamics Expert Articles series.
 
 
 
AUG 16, 2007 | Vincent Liu co-authors Implementing Effective Vulnerability Remediation Strategies Within the Web Application Development Lifecycle as part of the SPI Dynamics Expert Articles series.
 
 
 
AUG 15, 2007 | Vincent Liu co-authors Web Application Vulnerability Assessment Essentials: Your First Step to a Highly Secure Web Site as part of the SPI Dynamics Expert Articles series.
 
 
 
AUG 15, 2007 | Vincent Liu will be participating on a panel, "Provider and Vendor - Implementation Lessons Learned", at the SANS What Works in Application Security Summit 2007, August 15 - 16 at the Marriott Wardman Park Hotel in Washington, DC.
 
 
 
AUG 1, 2007 | Vincent Liu authors Penetration Testing: The White Hat Hacker in the July 2007 issue of the ISSA Journal.
 
 
 
JUN 8, 2007 | Vincent Liu will be featured in "The Rise of Antiforensics" in CSO magazine.
 
 
 
 
MAR 26, 2007 | Stach & Liu announces its support and participation in the industry's first certification for secure programming: SANS GIAC Secure Software Programmer (GSSP).
 
 
 
JAN 25, 2007 | Patrick Stach presents "Commonly Overlooked Cryptographic Vulnerabilities in Web Applications" at the San Francisco OWASP chapter meeting, January 25 in San Francisco, CA.
 
 
 
JAN 11, 2007 | Jon Rose will be hosting the first Phoenix OWASP chapter meeting, featuring Brian Christian, who will be presenting "Protecting Web Applications Throughout the Development Lifecycle".
 
 
 
NOV 24, 2006 | Vincent Liu will be providing expertise on protecting corporate assets in the November 24, 2006 issue article, The Business Journal of Phoenix - Even without big budget, employee theft can be stopped
 
 
 
NOV 9, 2006 | Jon Rose will be presenting "Application Security Vulnerabilities in Publicly Available Source Code" at the kick-off Phoenix OWASP chapter meeting, November 9 in Phoenix, AZ.
 
 
 
OCT 17, 2006 | Vincent Liu will be leading the "Consulting Services Roundtable" discussion and will be a panel member on the "Industry Experts Panel for Application Security" at SPICON 2006.
 
 
 
JUN 14, 2006 | Vincent Liu will be presenting the latest in anti-forensics techniques at the Arizona High Technology Crime Investigation Association (HTCIA), June 14 in Phoenix, AZ
 
 
 
MAY 4, 2006 | Vincent Liu and Patrick Stach will be presenting "Defeating Forensic Analysis" at the Computer and Enterprise Investigations Conference 2006, May 4 at the Hyatt Regency Lake Las Vegas in Las Vegas, NV.
 
 
 
APR 4, 2006 | Vincent Liu and Francis Brown will be presenting "Bleeding-Edge Anti-Forensics" at InfoSecWorld 2006, April 4 in Orlando, FL.
 
 
 
OCT 13, 2005 | Vincent Liu will be presenting "The Metasploit Anti-Forensics Project" at Microsoft BlueHat v2, October 13 at Microsoft in Redmond, WA.
 
 
 
SEP 16, 2005 | Vincent Liu will be presenting "The Metasploit Anti-Forensics Project" at Toorcon 7, September 16 at the San Diego Convention Center in San Diego, CA.
 
 
 
JUL 27, 2005 | Vincent Liu will be presenting Catch Me If You Can: Exploiting Encase, Microsoft, Computer Associates, and the rest of the bunch at Black Hat USA 2005, July 27 at Caesar's Palace in Las Vegas, NV.