Security/Meetings/Automation/2013-10-29: Difference between revisions

From MozillaWiki
Jump to navigation Jump to search
(Created page with "<!-- Maybe don't screw with these links unless you've read this blog post: http://blog.johnath.com/2011/01/20/automatic-date-links-in-mediawiki/ Just copy them to new pages an...")
 
No edit summary
 
(One intermediate revision by the same user not shown)
Line 3: Line 3:
Just copy them to new pages and it should Just Work!-->
Just copy them to new pages and it should Just Work!-->
<center>[[Security/Meetings/Automation/{{#time: Y-m-d | {{SUBPAGENAME}} -1 week}}|&laquo; previous week]] | [[Security/Meetings/Automation|index]] | [[Security/Meetings/Automation/{{#time: Y-m-d | {{SUBPAGENAME}} +1 week}}|next week &raquo;]]</center>
<center>[[Security/Meetings/Automation/{{#time: Y-m-d | {{SUBPAGENAME}} -1 week}}|&laquo; previous week]] | [[Security/Meetings/Automation|index]] | [[Security/Meetings/Automation/{{#time: Y-m-d | {{SUBPAGENAME}} +1 week}}|next week &raquo;]]</center>
Agenda
* Status Updates
* discussion
Status Updates (usually non-silent):
ulfr
* MIG demo
** loose json format for actions, all json
** demo running an action with 4 tests, including one that md5 /usr/lib (4000+ files) in less than 1 second
** next step is to store results in mongo and plug a rest api on top of it
stefan
* mini-minion soon
* minion frontend to simply add websites
psiinon
* http://code.google.com/p/zaproxy/wiki/ProposalPlugableReports
* pnh2 progress - UI
* Zest docs / vid
* VWAD: https://www.owasp.org/index.php/OWASP_Vulnerable_Web_Applications_Directory_Project
* * can you add this awesome xss bypassing challenge? http://escape.alf.nu/
* Simon has won an owasp award for his leadership on ZAP. congrats! :)
mark
freddy
* PTO was great. that's all.
jeff
mozdef UI demo
* it updates in realtime
tinfoil
Discussion
* there are some common concepts and technologies used in tools like mig, mozdef and minion
* hint: we should make sure these are interoperable and stay that way

Latest revision as of 15:43, 29 October 2013

« previous week | index | next week »


Agenda

  • Status Updates
  • discussion

Status Updates (usually non-silent): ulfr

  • MIG demo
    • loose json format for actions, all json
    • demo running an action with 4 tests, including one that md5 /usr/lib (4000+ files) in less than 1 second
    • next step is to store results in mongo and plug a rest api on top of it

stefan

  • mini-minion soon
  • minion frontend to simply add websites

psiinon

mark freddy

  • PTO was great. that's all.

jeff mozdef UI demo

  • it updates in realtime

tinfoil Discussion

  • there are some common concepts and technologies used in tools like mig, mozdef and minion
  • hint: we should make sure these are interoperable and stay that way