Accuvant speaks at Blackhat Europe

By Jon Miller ·
0 Shares

So the week before last Neel Mehta of Google, Alex Wheeler of TippingPoint, Dave Bonvillain of Accuvant, and myself made our way to Amsterdam to speak at Blackhat Europe. The topic of our talk was 'Cutting thru the Hype: An Analysis of Application Security Testing Methodologies' (Dave's name)... we were going to speak about all the different types of testing methodologies, their strengths and weaknesses, and build a matrix to help people decide what methodology to use. So Alex, Dave, and yours truly were sitting around a couple weekends before the talk trying to figure out what factors need to be ranked in order to properly define a risk of an application, and establish the most appropriate testing methodology... well after 2 or 3 hours, we had 20 some-odd criteria, not really the easiest thing to build a matrix around. So that didn't look like it would be ready in time for the conf, so we agreed that we would be an online web-form after Blackhat where people could go, fill out the prompted questions and get a response... that's still coming, I wouldn't hold my breath though it's going to take us a while to figure out how to make that work. So we needed some 'zazz' for the talk, as I hope many of you know both Neel and Alex are some of the best researchers in the world of infosec, so easy enough, we can drop a huge 0day, easy enough. I talked with Jeff Moss and let him know what we were planning on doing; he was excited Neel has a bug that has a pretty large impact footprint, so we were going to drop that. The only problem... disclosure... patches... time... not on our side... Here it is 2 weeks after the conference and the bug still hasn't cleared disclosure, hopefully it will soon, and when it does you can read about it here. Other than that the trip was great...

0 Shares