Fear, Loathing and ThreadFix: 2012 BlackHat and BSidesLV Recap

Hopefully everyone is recovering from their week in Las Vegas for BlackHat, BSidesLV and DefCon. I had a great time out there, although this year I might have been Patient 0 for the ConFlu so I had to take it easy from Wednesday on. Probably for the best.
I had a blast presenting with Josh Sokol at BSidesLV 2012 on his new concept of “Symbiotic Security” looking at ways security tools should be able to communicate with one another. You can see our slides online here:

We had some really good questions about the wisdom of automating virtual patching and other security system interactions. The point we were trying to make was less about promoting specific interactions between tools and systems, but rather having the open communication capabilities that make those sort of interactions possible. (Josh and I will also be giving an updated version of the talk at HouSecCon on October 11th, 2012.)
The BSidesLV guys are lightning-fast getting videos online, so you can also see Josh and I’s actual presentation on YouTube here:

We were also fortunate enough to be able to showcase ThreadFix at the BlackHat Arsenal. This was really valuable as it gave us the opportunity to talk to a lot of folks who had been beta testing ThreadFix to get their feedback. We also got to meet a lot of new folks to talk about how ThreadFix might be valuable in their environments. Many thanks to the BlackHat and Netpeas folks for the opportunity to participate.
dan _at_ denimgroup.com

Posted via email from Denim Group’s Posterous

About Dan Cornell

A globally recognized application security expert, Dan Cornell holds over 15 years of experience architecting, developing and securing web-based software systems. As the Chief Technology Officer and a Principal at Denim Group, Ltd., he leads the technology team to help Fortune 500 companies and government organizations integrate security throughout the development process. He is also the original creator of ThreadFix, Denim Group's industry leading application vulnerability management platform.
More Posts by Dan Cornell

3 Responses to “Fear, Loathing and ThreadFix: 2012 BlackHat and BSidesLV Recap”

  1. http://racespace.org/groups/if-you-read-nothing-else-today-read-this-report-on-steel-targets

    I am now not positive where you’re getting your info, but good topic. I needs to spend some time learning more or understanding more. Thank you for excellent info I was looking for this information for my mission.

  2. gong handgun targets

    Superb post but I was wondering if you could write a litte more on this subject? I’d be very grateful if you could elaborate a little bit further. Thanks!

  3. Ar500 Handgun Targets

    You’ve made some good points there. I looked on the web to learn more about the issue and found most people will go along with your views on this web site.

Leave a Reply

Your email address will not be published. Required fields are marked *