Tag Archives: Application Security

OWASP Top Ten 2013 free workshop

Posted on July 18, 2013 by Simon Roses

Yesterday, July 17th, I taught a free workshop about the OWASP Top Ten 2013 which was published recently that describes the 10 most common vulnerabilities in Web applications. This free workshop is a collaboration between the Catedral de Innovación of … Continue reading →

What’s the point of reporting 0day?

Posted on June 17, 2013 by Simon Roses

In the last weeks the news related to PRISM has not stopped since leaked by Edward Snowden, who worked for Booz Allen Hamilton, a defense contractor for the NSA. One interesting outcome of these leaks is the NSA access to … Continue reading →

Posted in Business, Microsoft, Pentest, Security, Technology | Tagged 0Day, Application Security, attack vector, Computer Network Operations (CNO), Cyber Wars, exploit, Google, Information Security, Information Warfare, Intelligence, Software Security | Leave a comment

AppSec: Build Rooted Detection in your App

Posted on June 4, 2013 by Simon Roses

For various reasons many Apps need to detect if the phone has been “rooted” and in this article will see different techniques for this purpose. Since it is common to see this type of questions in development forums, I thought … Continue reading →

Posted in Pentest, Privacy, Security, Technology, Threat Modeling | Tagged Android, Application Security, Apps, Information Security, Penetration Testing, Reverse Engineering, Software Security, VULNEX | Leave a comment

OSINT + Python = Custom Hacking

Posted on May 15, 2013 by Simon Roses

Last May 10 and 11 the course of Computer Forensic Expert was held in Reus (Spain) by the Asociación Nacional de Tasadores y Peritos Judiciales Informáticos (ANTPJI), which I am member and one of the instructors, where I had the … Continue reading →

Posted in Pentest, Privacy, Security, Technology | Tagged ANTPJI, Application Security, attack vector, Computer Network Operations (CNO), Google, Intelligence, OSINT, Penetration Testing, Python, visualization, VULNEX | 10 Comments

AppSec: Improve your software security with GCC Stack Protector Strong

Posted on April 10, 2013 by Simon Roses

The other day helping out a client to develop secure software it came to my mind that this topic could be of interest to my readers. Obviously this topic is quite wide, but in this article I will focus in … Continue reading →

Posted in Pentest, Privacy, Security, Technology, Threat Modeling | Tagged Application Security, AppSec @en, attack vector, Compiler, GCC, Information Security, Linux, SDL, Software Security | Leave a comment

Book Review: The IDA Pro Book, 2nd edition

Posted on March 22, 2013 by Simon Roses

If you like reverse engineering and want to learn all the secrets of IDA Pro, this is your book. This work written by Chris Eagle, a top expert on the subject, reveals the power of the best tool for reverse … Continue reading →

Posted in Books, Pentest, Security, Technology | Tagged Application Security, Book, Book Review, RE, Reverse Engineering, Reversing, Software Security | Leave a comment

Back to Black Hat Europe and my talk on Anti-Theft

Posted on March 18, 2013 by Simon Roses

Last Thursday 14 and Friday 15 March the Conference Black Hat Europe was held in the great city of Amsterdam, a mandatory event for cyber security experts. For second year running I presented on R&D outlining the security posture of … Continue reading →

Posted in Conference, Pentest, Security, Technology | Tagged Android, Anti-Theft, Application Security, Conference, CyberSecurity, Iphone, Penetration Testing, Software Security, VULNEX, Windows | Leave a comment

AppSec USA 2012: the experience

Posted on October 31, 2012 by Simon Roses

You know you are in Texas when you get out of the plane and hear country music through the airport and I was there indeed because the 25 and 26th of October the OWASP AppSec USA conference was taking place … Continue reading →

Posted in Conference, Hacking, OWASP, Pentest, Privacy, SDL, Security, Technology, Threat Modeling | Tagged Application Security, Apps, Information Security, OWASP, SDL, Software Security, Web Honeypots | Leave a comment

Blackhat Europe 2012, MundoHackerTV and More

Posted on April 13, 2012 by Simon Roses

[Español] Llevaba demasiadas semanas sin escribir un post y no puede ser 🙂 La verdad es que estoy bastante ocupado con VULNEX (startup especializada en ciberseguridad) pero he sacado un poco de tiempo para contaros las novedades. [English] Too many … Continue reading →

Posted in Conference, Pentest, Security, Technology | Tagged Android, Application Security, Apps, Conference, CyberSecurity, Information Security, Iphone, Smartphone, Software Security, VULNEX | Leave a comment

AppSec: Static Application Security Testing (SAST) Free Tool Map

Posted on February 23, 2012 by Simon Roses

[Español] Cuando realizo un análisis de seguridad en una aplicación intento combinar el uso de Static Application Security Testing (SAST) y el Dynamic Application Security Testing (DAST) para obtener los mejores resultados. Dejamos DAST para otro post. [English] When I’m … Continue reading →

Posted in Pentest, SDL, Security | Tagged Application Security, DAST, Information Security, SAST, SDL, Software Security | 2 Comments

Tag Archives: Application Security

OWASP Top Ten 2013 free workshop

What’s the point of reporting 0day?

AppSec: Build Rooted Detection in your App

OSINT + Python = Custom Hacking

AppSec: Improve your software security with GCC Stack Protector Strong

Book Review: The IDA Pro Book, 2nd edition

Back to Black Hat Europe and my talk on Anti-Theft

AppSec USA 2012: the experience

Blackhat Europe 2012, MundoHackerTV and More

AppSec: Static Application Security Testing (SAST) Free Tool Map

Archives

Meta

Languages

My Speaking Events

Search www.simonroses.com

Categories

Blogroll