| Date |
Type |
Title |
Author |
Event |
| January 12, 2012 |
Slides |
Project Paraegis Round 2: Using Razorwire HTTP proxy to strengthen webapp session handling and reduce attack surface
|
|
Black Hat EU 2006 |
| January 09, 2012 |
Slides |
Defending Black Box Web Applications: Building an Open Source Web Security Gateway
|
Shawn Moyer
|
Black Hat USA 2006 |
| October 23, 2010 |
Video |
Is XSS Solveable?
|
Don Ankney
|
LayerOne 2009 |
| October 23, 2010 |
Slides |
Is XSS Solveable?
|
Don Ankney
|
LayerOne 2009 |
| September 22, 2010 |
Slides |
Application Defense Tactics & Strategies - WAF at the Gateway
|
Shreeraj Shah
|
Hack In The Box 2009 Dubai |
| September 01, 2010 |
Slides |
WAF Virtual Patching Challenge: Securing WebGoat with ModSecurity
|
Ryan C. Barnett
|
Black Hat DC 2009 |
| September 01, 2010 |
Audio |
WAF Virtual Patching Challenge: Securing WebGoat with ModSecurity
|
Ryan C. Barnett
|
Black Hat DC 2009 |
| September 01, 2010 |
Video |
WAF Virtual Patching Challenge: Securing WebGoat with ModSecurity
|
Ryan C. Barnett
|
Black Hat DC 2009 |
| July 29, 2010 |
Video |
No More Signatures: Defending Web Applications from 0-Day Attacks with ModProfiler UsingTraffic Profiling
|
Ivan Ristic
Ofer Shezaf
|
Black Hat USA 2008 |
| July 28, 2010 |
Slides |
No More Signatures: Defending Web Applications from 0-Day Attacks with ModProfiler UsingTraffic Profiling
|
Ivan Ristic
Ofer Shezaf
|
Black Hat USA 2008 |
| July 28, 2010 |
Paper |
No More Signatures: Defending Web Applications from 0-Day Attacks with ModProfiler UsingTraffic Profiling
|
Ivan Ristic
Ofer Shezaf
|
Black Hat USA 2008 |
| July 28, 2010 |
Audio |
No More Signatures: Defending Web Applications from 0-Day Attacks with ModProfiler UsingTraffic Profiling
|
Ivan Ristic
Ofer Shezaf
|
Black Hat USA 2008 |
| November 10, 2009 |
Audio |
Playing with Web Application Firewalls
|
Wendel Guglielmetti Henrique
|
DEFCON 16 |
| November 08, 2009 |
Audio |
The Wide World of WAFs
|
Ben Feinstein
|
DEFCON 16 |
| October 28, 2009 |
Slides |
Beyond Attack Patterns - Positive Security Models with ModSecurity
|
Christian Bockermann
|
Digital Security Forum - 2nd |
| September 30, 2009 |
Slides |
Unraveling Unicode: A Bag of Tricks for Bug Hunting
|
Chris Weber
|
Black Hat USA 2009 |
| September 30, 2009 |
Paper |
Unraveling Unicode: A Bag of Tricks for Bug Hunting
|
Chris Weber
|
Black Hat USA 2009 |
| July 11, 2009 |
Paper |
Detecting Remote File Inclusion attack
|
Or Katz
|
|
| July 07, 2009 |
Paper |
eval($WAF);
|
|
|
| May 15, 2009 |
Slides |
Masibty: a Web Application Firewall Based on Anomaly Detection
|
Stefano Zanero
Claudio Criscione
|
Black Hat EU 2009 |
| April 04, 2009 |
Video |
Playing with Web Application Firewalls
|
Wendel Guglielmetti Henrique
|
DEFCON 16 |
| April 04, 2009 |
Slides |
Playing with Web Application Firewalls
|
Wendel Guglielmetti Henrique
|
DEFCON 16 |
| March 29, 2009 |
Video |
The Wide World of WAFs
|
Ben Feinstein
|
DEFCON 16 |
| March 29, 2009 |
Slides |
The Wide World of WAFs
|
Ben Feinstein
|
DEFCON 16 |
| February 19, 2009 |
Paper |
WAF Virtual Patching Challenge: Securing WebGoat with ModSecurity
|
Ryan C. Barnett
|
Black Hat DC 2009 |
| October 09, 2008 |
Slides |
Evading/Attacking NIDS
|
|
|
| October 09, 2008 |
Paper |
HTTP IDS Evasions Revisited
|
Daniel J. Roelker
|
|
| September 05, 2008 |
Paper |
Web Application Firewall Evaluation Criteria
|
|
|
| September 05, 2008 |
Slides |
WAFEC, or how to choose WAF technology
|
|
|
| July 18, 2008 |
Paper |
Vulnerability Assessment Plus Web
Application Firewall (VA+WAF)
|
Jeremiah Grossman
|
|
Tag: WAF
or on facebook 
top