Open Web Application Security Project -- az alkalmazásbiztonság ügyét mozdítja elő. Az AppSec ügye: a hackereknek ellenállóbb szoftver.
See all
Members (66)
Eniko Szekely's profile photo
OWASP HU's profile photo
Tibor Bősze's profile photo
Tibor Fekete's profile photo
Timur Khrotko (x)'s profile photo
Timur “x” Khrotko's profile photo
Adam Balogh's profile photo
Adam Zsuffa's profile photo
Prém Dániel's profile photo
Attila Varga's profile photo
Rákos András's profile photo
Rudi Szabó's profile photo
Tamás Lengré's profile photo
Csaba Krasznay's profile photo
Tibor Gemes's profile photo
Daniel Vasarhelyi's profile photo
Nándor Róth's profile photo
Norbert Baliga's profile photo
Park Kyoung Min 박경민's profile photo
György Kollár's profile photo
Péter Nagy's profile photo
László Németh's profile photo
Peter Palai (PPeti)'s profile photo
József Halmi's profile photo

Stream

Join this community to post or comment

Timur Khrotko
owner

Radar (érdekes)  - 
 
OWASP 24/7 is a recorded series of discussions with project leads within OWASP. Each week, we talk about the new projects that have come on board, updates to existing projects and interesting bits of trivia that come across our desk.
1
Add a comment...

Timur Khrotko
owner

Radar (érdekes)  - 
1
Add a comment...

Timur Khrotko
owner

Repo (hasznos)  - 
 
"If you walk into a bank and try opening random doors, you will be identified, led out of the building and possibly arrested. However, if you log into an online banking application and start looking for vulnerabilities no one will say anything. This needs to change! As critical applications continue to become more accessible and inter-connected, it is paramount that critical information is sufficiently protected. We must also realize that our defenses may not be perfect. Given enough time, attackers can identify security flaws in the design or implementation of an application."
OWASP AppSensor. The AppSensor project defines a conceptual framework and methodology that offers prescriptive guidance to implement intrusion detection and automated response into applications. The project offers 1) a comprehensive guide and 2) a reference implementation.
1
Add a comment...

Timur Khrotko
owner

Repo (hasznos)  - 
 
 
T10 németül
#ln
 ·  Translate
Vorwort der deutschen Übersetzung. „Ist es nicht sonderbar, dass eine wörtliche Übersetzung fast immer eine schlechte ist? Und doch lässt sich alles gut übersetzen. Man sieht hieraus, wie viel es sagen will, eine Sprache ganz verstehen; es heißt, das Volk ganz kennen, das sie spricht.
View original post
1
Add a comment...

OWASP HU
moderator

Közlöny (official)  - 
 
 
Létrejött a kolozsvári tagozat. Következő esemény, jan. 29.  #ln  
Welcome to the OWASP Cluj-Napoca Chapter Homepage. Click here to join our mailing list. Follow us on Twitter. OWASP Cluj-Napoca Chapter meetings / events are free and open. Cluj-Napoca benefits from a strong software development community and application security is one vital aspect to be taken ...
View original post
1
Add a comment...

OWASP HU
moderator

Repo (hasznos)  - 
 
 
t10 vs node
Injection flaws occur when untrusted data is sent to an interpreter as part of a command or query. The attacker's hostile data can trick the interpreter into executing unintended commands or accessing data without proper authorization.
View original post
1
Add a comment...

Timur Khrotko
owner

Repo (hasznos)  - 
 
Introduction. Threat modeling is an approach for analyzing the security of an application. It is a structured approach that enables you to identify, quantify, and address the security risks associated with an application. Threat modeling is not an approach to reviewing code, ...
1
Add a comment...

OWASP HU
moderator

Közlöny (official)  - 
 
 
OWASP HU a facebookon
https://www.facebook.com/owasp.hu
#ln  
 ·  Translate
View original post
1
Add a comment...

Timur Khrotko
owner

Közlöny (official)  - 
 
 
mySec és OWASP közös rendezvénye
November 26, szerda, este, Kolor (Gozsdu udvar)
Regisztrálni a mySec oldalon kell:
http://www.mysectalk.hu/index.php/component/k2/item/34-alkalmazasbiztonsag-a-jo-gyakorlat-es-a-hianyzo-elemek #meetup 
 ·  Translate
View original post
1
Add a comment...

Timur Khrotko
owner

Közlöny (official)  - 
 
OWASP logó és ppt forrás
OWASP Marketing: Designs and Downloads. On this page, you will find the most current marketing materials and brand guidelines used by the OWASP Foundation. We have everything from logos and business cards to banner stand and brochure designs all for your use. Most of the files found on this page ...
1
Add a comment...

About this community

Open Web Application Security Project -- az alkalmazásbiztonság ügyét mozdítja elő. Az AppSec ügye: a hackereknek ellenállóbb szoftver. ✦ AppSec -- tedd működőképessé! ✦

Timur Khrotko
owner

Repo (hasznos)  - 
 
" Dependency-Track is a webapp that allows organizations to document the use of third-party components across multiple applications and versions. Further, it provides automatic visibility into the use of components with known vulnerabilities."
OWASP Dependency-Track. OWASP Dependency-Track is a Java web application that allows organizations to document the use of third-party components across multiple applications and versions. Further, it provides automatic visibility into the use of components with known vulnerabilities.
1
Add a comment...

Timur Khrotko
owner

Repo (hasznos)  - 
 
 
API security is a critical component in the API lifecycle, and yet it is often overlooked. In this guide, you will learn about various API vulnerabilities and how to find them in your own APIs. #API #SecurityTesting #Hacking  
API security is a critical component in the API lifecycle, and yet it is often overlooked. Many companies don’t consider API security until a breach occurs and they are forced into a reactive solution. Proactively fortify your APIs to make them as impenetrable as possible using the tips in this guidebook for API security. In this guide, you will learn about various API vulnerabilities and how to find them in your own APIs. The following pages wil...
View original post
1
Add a comment...

Timur Khrotko
owner

Radar (érdekes)  - 
 
 
"Developers care as much about security, as security cares about learning more about legal and compliance." #ln  
I've been busy this past year which has resulted in almost no updates to this site. Consider this one of many rants/posts of my experience/s in the industry during this time. This post covers a topic I think many people implement poorly, which is security training targeting developers.
View original post
1
Add a comment...

Timur Khrotko
owner

Radar (érdekes)  - 
 
Az a hír h google open source blog irt egy owasp projektről. (Bár az app imo "még nagyon sokat fejlődhetne",)
 ·  Translate
1
Add a comment...

OWASP HU
moderator

Közlöny (official)  - 
 
 
"Dear AppSec enthousiast and OWASP affiniado,

the OWASP AppSec EU conference series are a premier gathering in the application security domain. The 2015 event, taking place in Amsterdam from 19-22 May, is in full preparation. The program committee is still soliciting submissions for the presentations and research tracks. The deadlines are approaching fast:
*
- call for papers: 31th december 2014
- call for research: 20th januari 2015 *

If you want to share an important advancement or opinion with the community, or if you are looking for your 45 mins. of fame, NOW would be the best time to consider submitting a proposal ! You will find more information and submission instructions on the event website: https://2015.appsec.eu/

We're looking forward to receiving your proposals and to seeing you there !

The AppSec EU 2015 program & organisation committees."
View original post
1
Add a comment...

OWASP HU
moderator

Közlöny (official)  - 
 #ln
 
OWASP HU a twitteren 
https://twitter.com/owasp_hu #ln  
1
Add a comment...

Timur Khrotko
owner

Radar (érdekes)  - 
 
eredmények és ötletek
1
Add a comment...