Show 032 – An Interview with Jeremiah Grossman

Silver Bullet

Show 032 – An Interview with Jeremiah Grossman

Posted On November 13, 2008

Jeremiah Grossman

The 32nd episode of The Silver Bullet Security Podcast features founder and Chief Technology Officer of WhiteHat Security, Jeremiah Grossman. Gary and Jeremiah discuss clickjacking, cross-site request forgery, why 50% of web problems can’t be discovered reliably automatically, and which conferences Jeremiah most enjoyed on his 2008 world tour.

Transcript of this episode [PDF]
Jeremiah Grossman
Clickjacking
Adobe 0-day Browser Exploit
Cross-Site Request Forgeries: Exploitation and Prevention [PDF]
Web Spoofing: An Internet Con Game by Edward W. Felten, Dirk Balfanz, Drew Dean, and Dan S. Wallach.
Web application scan-o-meter
The “Wall of Fame”

Show 032 - An Interview with Jeremiah Grossman [ 29:20 ] Play Now | Play in Popup | Download

« Show 031 – An Interview … Show 033 – An Interview … »

Pingback: Justice League » Blog Archive » Web application security versus software security
http://www.cigital.com/~gem gem

My interview with Jeremiah prompted me to write a column about the relationship between Web app security and software security. The result is here:

http://www.informit.com/articles/article.aspx?p=1309290

gem
Pingback: Automated security testing and its limitations | Mike Andrews
http://www.sensepost.com/blog/ mh

Re: the carry over of traditional timing attacks to web applications, checkout our 2007 paper/ppt from BlacHat-USA [It's all about the Timing] ((http://www.sensepost.com/research/squeeza) or (http://www.sensepost.com/research_conferences.html))

Recent Episodes

Featured Episodes

Download Our Media Kit