Events
7-12/MAY/2012"SEC542: Web App Penetration Testing and Ethical Hacking" Training
Raul Siles
SANS Secure Europe 2012 (6 days). Amsterdam. Netherlands. (English)
20/JUL/2012"Creando empresas seguras"
David Perez & Jose Pico
Internet Startup Camp 2012. Valencia. Spain.
24-25/SEP/2012"Assessing and Exploiting Web Applications with Samurai-WTF" Training
Raul Siles
BruCON 2012 (2 days). Ghent. Belgium (English)
26-27/SEP/2012"Security of National eID (smartcard-based) Web Applications"
Raul Siles
BruCON 2012. Ghent. Belgium (English)
26/NOV/2012-1/DEC/2012"SEC575: Mobile Device Security and Ethical Hacking" (NEW) Training
News
"Seguridad de aplicaciones web basadas en el DNIe"
The Rooted CON 2012 presentation on DNIe-based web applications security has been published. Check the related blog post. The presentation is available for download from our lab. April 2012.
"Building OWASP ZAP Using Eclipse IDE for Java... Pen-Testers (v2.0)"
Taddong has contributted to the OWASP ZAP project by creating and updating the "Building OWASP ZAP Using Eclipse IDE for Java... Pen-Testers" (v2.0) guide. Check the related blog post. The updated guide is available for download in our lab. February 2012.
"OWASP Session Management Cheat Sheet (v2.0)"
Taddong has contributted to the OWASP Cheatshet Series by creating and updating the OWASP Session Management Cheat Sheet (v2.0). Check the related blog post (soon). The updated whitepaper is available for download in our lab. February 2012.
"OWASP Podcast #90: Raul Siles"
Listen to "OWASP Podcast #90", an interview with Raul Siles to analyze web applications session management security and the associated OWASP CheatSheet. February 2012.
Book: "Hacking y seguridad en comunicaciones móviles GSM/GPRS/UMTS/LTE" (Spanish)
Taddong has written a book (in Spanish) compiling the main security threats of 2G/3G communications, as well as the theory required to understand the associated attacks. The book has been published by Informatica64 and it is available for purchase on their web page.
Legal