Andres, It seems that I will talk about W3AF in whole separate presentation (about 20-25 min) instead of part of PCI DSS presentation [0]! =) So don't you mind if I will take some basic content from your's one?
[0] http://ruscrypto.ru/conference/program/open-source/ [1] http://w3af.sourceforge.net/documentation/user/w3af-T2.pdf On Mon, 2009-03-23 at 18:53 -0300, Andres Riancho wrote: > Taras, > > On Mon, Mar 23, 2009 at 5:15 PM, Taras P. Ivashchenko > <naplan...@gmail.com> wrote: > > Hello, list! > > > > I'm going to make big presentation on RusCrypto 2009 security conference > > about practical requirements of PCI DSS such as pentests, external and > > internal vulnerability network scans and testing webapps by OWASP TOP 10 > > list with W3AF. > > Congrats on that! It's always good to be out there, and make > yourself known in the community. Also, thanks for talking about w3af, > a big promotion like you talking about it, is always welcome. > > > W3AF part - at the moment I'm thinking about: > > - short description and features of w3af > > Don't forget to mention that w3af is the most advanced open source > web application scanner, and that all the other tools are really > expensive ;) > > > - using OWASP_TOP10 profile > > > > Any more ideas? =) > > > > You could also perform a nice exploitation demo, people always > like shells popping up with 3 or 4 clicks ;) > > Cheers, > > > -- > > Тарас Иващенко (Taras Ivashchenko), OSCP > > www.securityaudit.ru > > ---- > > "Software is like sex: it's better when it's free." - Linus Torvalds > > > > ------------------------------------------------------------------------------ > > Apps built with the Adobe(R) Flex(R) framework and Flex Builder(TM) are > > powering Web 2.0 with engaging, cross-platform capabilities. Quickly and > > easily build your RIAs with Flex Builder, the Eclipse(TM)based development > > software that enables intelligent coding and step-through debugging. > > Download the free 60 day trial. http://p.sf.net/sfu/www-adobe-com > > _______________________________________________ > > W3af-develop mailing list > > W3af-develop@lists.sourceforge.net > > https://lists.sourceforge.net/lists/listinfo/w3af-develop > > > > > > > -- Тарас Иващенко (Taras Ivashchenko), OSCP www.securityaudit.ru ---- "Software is like sex: it's better when it's free." - Linus Torvalds
signature.asc
Description: This is a digitally signed message part
------------------------------------------------------------------------------
_______________________________________________ W3af-develop mailing list W3af-develop@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/w3af-develop
