The ITS4 article can be found at
http://www.acsac.org/2000/abstracts/78.html - it won the best paper
award when it was presented in 2000. (I don't think SLINT was every
presented at a professional conference.)
And since I'm mentioning ACSAC, the deadline for early registration is
coming up on
Weld is correct about SLINT which did predate ITS4. We also created a tool
called Jslint which even borrowed the slint name from what was then the l0pht
http://ieeexplore.ieee.org/xpl/freeabs_all.jsp?isNumber=19003arNumber=877869isnumber=19003arnumber=877869
(sorry, I don't seem to have a free
Hello,
The OWASP CSRF guard project (
http://www.owasp.org/index.php/Category:OWASP_CSRFGuard_Project ) has
recently been deemed inactive and I'm trying to help bring it back to
life.
I'm taking a survey of folks who have used CSRFGuard. In particular, I would
like to understand any
My gut feel here is that we gain a lot more by merging the work done here
into ESAPI. CSRFGuard is and has been a great project, but as it stands
unmaintained right now (although it is a very simple project, with a very
low level of maintenance) it seems to me that a lot of traction and momentum
My gut feel here is that we gain a lot more by merging the work done here
into ESAPI.
I agree 100%, I'm glad you said it first. J
- Jim
From: Chris Schmidt [mailto:chrisisb...@gmail.com]
Sent: Friday, October 29, 2010 8:36 PM
To: Jim Manico; esapi-...@lists.owasp.org;
hi sc-l,
In between bouts of Fall travel, we recorded Silver Bullet episode 55. Deb
Frincke is an academic, turned entrepreneur, turned scientific researcher. She
is active in the Department of Energy's security community and is a
well-respected thought leader in security education. Deb
I didn't realize you credited SLINT in the ITS4 paper. Very cool. It isn't
often that the academic world credits non-academic research and vice versa. It
is one of my pet peeves of the security research community[1].
SLINT scanned source code. It was born out of how we saw black hats doing
