My Security Planet » Anurag Agarwal - Application Security Evangelist

Anurag Agarwal - Application Security Evangelist

OWASP Top 10 Quiz

Posted: July 31st, 2011, 10:03am CDT by Anurag Agarwal

Tags: [edit]

We had recently developed a quiz to help an organization test their developer's knowledge of OWASP top 10. I thought it would be a good idea to make it public and let other organization use it for their development teams as well. This is a very basic quiz but I do plan to add different levels and more questions to it and bring randomness in the questions as well. I would greatly appreciate any
OWASP threat modeling project

Posted: April 13th, 2011, 5:57am CDT by Anurag Agarwal

Tags: [edit]

We are starting an OWASP threat modeling project to standardize a threat modeling approach which can be used by various companies. During the OWASP portugal summit I had a very meaningful and positive discussion on this topic and got support from a lot of people in the community. You can find out the results of the discussion at the OWASP Threat Modeling project page If you would like to join
Intellipass - A behavior based password lockout mechanism

Posted: August 19th, 2010, 9:48am CDT by Anurag Agarwal

Tags: [edit]

I am pleased to announce Intellipass (a behavior based password lockout mechanism). Most of the password lockout mechanism today are static, which means, they lock a user out after a certain number of incorrect password attempts. This feature is implemented to prevent brute force attempts against the login functionality. Even though this feature does what it’s supposed to, it has its own
Free Hands on Workshop on Web Application Security in New York City

Posted: May 6th, 2010, 10:16am CDT by Anurag Agarwal

Tags: [edit]

Ever wondered how a hacker hacks all these credit cards? Do you think hacking a website is difficult? What are the skills required to hack a website?ISSA NY Metro chapter is organizing a 3 hour workshop on web application security. This session will show you how easy it is to steal credit card numbers, SSN, etc by doing a SQL injection attack or how you can steal passwords, hijack a session
MyAppSecurity - Secure Your Applications

Posted: May 5th, 2010, 12:21pm CDT by Anurag Agarwal

Tags: [edit]

As some of you know that I joined WhiteHat Security as a Director of Education Services since Dec 2007 to build their training division from scratch. Though it has been a very demanding job but it has been very satisfying too. I enjoyed working with various companies, training their developers and QA professionals and resolving their web application security issues. Through training, I not only
WASSEC Project Leader Change Announcement

Posted: August 11th, 2008, 9:02am CDT by Anurag Agarwal

Tags: [edit]

There is going to be a new project leader (Brian Shura : bshura73_at_gmail_dot_com) for WASSEC (Web Application Security Scanner Evaluation Criteria) as of today. The leadership change will help me free up some time to work on other projects.We've identified an excellent candidate who will take over WASSEC from where I left. I have already given him an overview of the project, its status and the
OWASP AppSec India Conference 2008

Posted: June 18th, 2008, 6:31pm CDT by Anurag Agarwal

Tags: [edit]

OWASP Delhi Chapter is hosting a grand application security event in New Delhi, India. With a lot of Executives and business folks also attending the event, it clearly shows the attention web application security is getting in India and I am sure a lot of it could also be because India is one of the major offshore development hub for US projects and most of these companies sending projects
WASC OWASP Party @ Blackhat

Posted: June 18th, 2008, 6:30pm CDT by Anurag Agarwal

Tags: [edit]

WASC-OWASP Party at BlackhatBlackhat Vegas is around the corner. Our WASC-OWASP party last year rocked with around 300 people showing up. There was a huge line outside the shadow bar and it was by far the best party at Blackhat last year. If you weren't able to make it last year, do not miss it this time. Get your wristband from breach's booth at Blackhat.Join the leading minds in web application
Web Application Security Summit

Posted: April 15th, 2008, 6:48am CDT by Anurag Agarwal

Tags: [edit]

SANS and WASC have organized a Web Application Security Summit in Vegas.Web Application Security SummitJeremiah Grossman, Summit Chairwith Robert “RSnake” Hansen, Gary McGraw, and Caleb SimaJune 2-3, 2008 • Paris Hotel & Casino • Las Vegas, NVOn June 2-3, Various Application Security folks working in the enterprises will share the lessons learned in their application security initiatives. Case
RSA Conference Pictures

Posted: April 11th, 2008, 11:47am CDT by Anurag Agarwal

Tags: [edit]

RSA Conference 2008 is almost over. As usual there were so many companies showcasing their products and services or in some cases just a little bit of fun like video games, rock climbing, etc.I personally think there were more companies talking about web application security then last year. We still need some more companies with secure SDLC solutions to come out there. In addition, there were

← Jeremiah Grossman Ivan Ristic →

My Security Planet » Anurag Agarwal - Application Security Evangelist

Feeds

Anurag Agarwal - Application Security Evangelist

Posted: July 31st, 2011, 10:03am CDT by Anurag Agarwal

Tags: [edit]

Posted: April 13th, 2011, 5:57am CDT by Anurag Agarwal

Tags: [edit]

Posted: August 19th, 2010, 9:48am CDT by Anurag Agarwal

Tags: [edit]

Posted: May 6th, 2010, 10:16am CDT by Anurag Agarwal

Tags: [edit]

Posted: May 5th, 2010, 12:21pm CDT by Anurag Agarwal

Tags: [edit]

Posted: August 11th, 2008, 9:02am CDT by Anurag Agarwal

Tags: [edit]

Posted: June 18th, 2008, 6:31pm CDT by Anurag Agarwal

Tags: [edit]

Posted: June 18th, 2008, 6:30pm CDT by Anurag Agarwal

Tags: [edit]

Posted: April 15th, 2008, 6:48am CDT by Anurag Agarwal

Tags: [edit]

Posted: April 11th, 2008, 11:47am CDT by Anurag Agarwal

Tags: [edit]