STACH & LIU

SPI Dynamics Expert Articles Series – Implementing Effective Vulnerability Remediation Strategies Within the Web Application Development Lifecycle – Aug2007

August 16, 2007

Vincent Liu co-authors Implementing Effective Vulnerability Remediation Strategies Within the Web Application Development Lifecycle as part of the SPI Dynamics Expert Articles series.

SPI Dynamics Expert Articles Series – Web Application Vulnerability Assessment Essentials:: Your First Step to a Highly Secure Web Site – Aug2007

August 15, 2007

Vincent Liu co-authors Web Application Vulnerability Assessment Essentials: Your First Step to a Highly Secure Web Site as part of the SPI Dynamics Expert Articles series.

ISSA Journal – July 2007 – Penetration Testing: The White Hat Hacker

August 1, 2007

Vincent Liu authors Penetration Testing: The White Hat Hacker in the July 2007 issue of the ISSA Journal.

CSO Magazine – The Rise of Antiforensics – June 2007

June 8, 2007

Vincent Liu will be featured in “The Rise of Antiforensics” in CSO magazine.

 

CIO Magazine – How Online Criminals Make Themselves Tough to Find, Near Impossible to Nab – May 2007

May 31, 2007

Vincent Liu will be featured in CIO Magazine – How Online Criminals Make Themselves Tough to Find, Near Impossible to Nab.

The Business Journal of Phoenix – Even without big budget, employee theft can be stopped – Nov 2006

November 24, 2006

Vincent Liu will be providing expertise on protecting corporate assets in the November 24, 2006 issue article, The Business Journal of Phoenix – Even without big budget, employee theft can be stopped

SharePoint Hacking Diggity – Presentation Slides

June 14, 2012

For all presentation slides related to the SharePoint Hacking Diggity project, please see: SharePoint Hacking Diggity Project – Presentation Slides

Google Hacking Diggity – Presentation Slides

June 14, 2012

For all presentation slides related to the Google Hacking Diggity project, please see: Google Hacking Diggity Project – Presentation Slides Page

OWASP Atlanta – Attack Chaining Advanced Maneuvers – May 2012

May 31, 2012

Rob Ragan and Oscar Salazar will be presenting on the topic of Advanced Attack Chaining during the OWASP Atlanta meeting on May 31, 2012 at 6:00 PM EST. Slides can be downloaded here: OWASP Atlanta – Attack Chaining Advanced Maneuvers – May 2012 – Slides

SANS Penetration Testing Summit 2010

June 14, 2010

The Good, the Bad, and the Ridiculous slides presented at the SANS Penetration testing Summit 2010 in Baltimore, MD can downloaded here.

InformationWeek – Using Google to Find Vulnerabilities – 05Mar2012

March 5, 2012

Fran Brown authors the InformationWeek/Dark Reading report InformationWeek – Using Google to Find Vulnerabilities In Your IT Environment. In it, we will examine a slew of new tools and techniques that will allow security professionals to leverage Google, Bing, Baidu and other open search interfaces to proactively track down and eliminate sensitive information disclosures and vulnerabilities in their public systems. We also take a look at defensive tools designed to pull thousands of real-time RSS updates from search engines to provide users with alerts—a sort of intrusion detection system (IDS) for Google hacking.

The Challenges of Automated Application Assessments in a Web 2.0 World

December 12, 2009

Rob Ragan and Vincent Liu author The Challenges of Automated Application Assessments in a Web 2.0 World, which discusses the difficulties of properly auditing modern Web 2.0 applications.

Effective Controls for Attaining Continuous Application Security Throughout the Web Application Development Life Cycle

September 12, 2007

Vincent Liu co-authors Effective Controls for Attaining Continuous Application Security Throughout the Web Application Development Life Cycle as part of the SPI Dynamics Expert Articles series.