Over the next few weeks, I will be updating a great deal of information here concerning Application Security. Its one of my talents, to be able to pen test applications, audit and suggest things. I still find it amazing that AppSec is still frowned upon in many ways. We can prove that problems exist, we can show them how we pulled back information through a web application, we can show them and teach them.... but the lights are still not on.
In some ways they are slowly starting to turn on. Which is a good thing. But we need more awareness of the problem to be able to fix a lot of the problems that are out there.
Check back for more things in the near future!
Thanks