1 / 8

OWASP JSEC CVE DETAILS

OWASP JSEC CVE DETAILS. Dibyendu Sikdar (@ dibsyhex ) OSWAP Kolkata Chapter , Sillycon. >> whoami. Dibyendu Sikdar OpenSource Developer & Security Researcher Project Leader of OWASP JSEC DETAILS Acknowledged and listed in various Hall of Fame - AT&T , Microsoft, Oracle ,Adobe , etc.

elewa
Télécharger la présentation

OWASP JSEC CVE DETAILS

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. OWASP JSEC CVE DETAILS DibyenduSikdar (@dibsyhex) OSWAP Kolkata Chapter , Sillycon

  2. >>whoami DibyenduSikdar OpenSource Developer & Security Researcher Project Leader of OWASP JSEC DETAILS Acknowledged and listed in various Hall of Fame - AT&T , Microsoft, Oracle ,Adobe ,etc

  3. What is CVE ? CVE or The Common Vulnerabilities and Exposures system provides a reference method for publicly known information security vulnerabilities and exposures

  4. Example CVE-2014-5250 Details - Unspecified vulnerability in the AJAX autocompletion callback in the Biblio Autocomplete module 6.x-1.x before 6.x-1.1 and 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to access data via unspecified vectors.

  5. So what makes this tool cool? This desktop application can be used to fetch the latest CVEs directly from the CVE details online service cvedetails.com. Search CVEs Search Exploits Search POCs Search Vulnerabilities

  6. Screenshot

  7. Project Timeline 13 June 2014 - Released the project as open source 17 August 2014 - Requested for OWASP project approval 20 August 2014 - Project Proposal Accepted 21 August 2014 - To be released under OWASP Kolkata Chapter ,SillyCon 22 September 2014 - V2.0 Released

  8. Future Plans Android Version Improved UI

More Related