Pre-LASCON Training: Running a Software Security Program with Open Source Tools


Everybody’s excited about LASCON 2013, right? After hosting OWASP AppSecUSA 2012 the LASCON folks aren’t resting on their laurels for the 2013 event. The conference proper is in Austin, TX on October 24th and 25th this year and, based on the keynotes that have alrady been announced, this should be a first-rate event. And the LASCON folks are doing something new this year by also sponsoring some training events in the months before the conference starts. I’ll be doing the training class in July.

Title: Running a Software Security Program With Open Source Tools

Trainer: Dan Cornell

Dates: July 22nd and 23rd, 9:00am – 5:00pm

Cost: $195/person

Location: Norris Conference Center, Austin, TX


Using the Software Assurance Maturity Model (OpenSAMM) as a framework, this course walks through the major components of a comprehensive software security program and highlights open source and other freely-available tools that can be used to help implement the activities involved in such a program. The focus of the course is on providing hands-on demonstrations of the tools with an emphasis on integrating tool results into the overall software security program. Attendees should finish the course with a solid understanding of the various components of a comprehensive software security program as well as hands-on exposure to a variety of freely-available tools that they can use to implement portions of these programs.

Register online here. Several spots have already been taken, so please sign up early if you’re interested because this will likely fill up.

Contact us to talk more about getting the most out of the tools you’re using – both open source and commercial – in your software security program.


dan _at_


About Dan Cornell

A globally recognized application security expert, Dan Cornell holds over 15 years of experience architecting, developing and securing web-based software systems. As the Chief Technology Officer and a Principal at Denim Group, Ltd., he leads the technology team to help Fortune 500 companies and government organizations integrate security throughout the development process. He is also the original creator of ThreadFix, Denim Group's industry leading application vulnerability management platform.
More Posts by Dan Cornell

5 Responses to “Pre-LASCON Training: Running a Software Security Program with Open Source Tools”


    Hi there, its nice article regarding media print, we all understand media is a enormous source of facts.

  2. Empfohlene Website

    It’s an amazing piece of writing in support of all the online visitors; they will take benefit from it I am sure.

  3. Brustvergrößerung Bilder

    Nice blog here! Also your website loads up very fast! What web host are you using? Can I get your affiliate link to your host? I wish my web site loaded up as fast as yours lol

  4. ver el vídeo

    Pareja que con la apatía general y la falta de preocupación hacia las posesiones, y los teléfonos celulares comienza rompiendo Debido a la reactivación del seguro COBRA y terminación involuntaria, los legisladores probablemente se dieron cuenta de que esto no traerá beneficios para el cuidado de la salud y la asistencia a la mayoría de los trabajadores en el momento en que más los necesitaban . La mayoría de los proveedores de seguros de la flota ofrecen los tres niveles básicos de cobertura: responsabilidad civil, cobertura amplia y Fuego .zapatillas baratas

  5. Quick Programs Of VORTEX BULK EMAIL SERVER-SENDER – Some Thoughts –

    Revealing Rudimentary Aspects For NEW WSO’s –

Leave a Reply

Your email address will not be published. Required fields are marked *