Agnition - The Security Code Review Swiss Army Knife - David Rook - Hack in Paris
Hack in Paris via YouTube
Overview
Syllabus
Introduction
Agenda
What is static analysis
Human vs software
Defect density
How long does it take
Limitations of software
Finding bugs
The good the bad and the ugly
The bad review process
The good review process
Principles of secure development
Vulnerability lists
Secure development education
Common vulnerabilities
Principles approach
What is Ignition
Checklists
The Checklist Manifesto
Heart Surgery Checklist
Cessna Checklist
Autodestruct sequence
Xray machine
NASA
Why Agnition
Good review process
Review process wasnt smart
Application profiles
Checklist
InputOutput Validation
XML Schema
Word Documents
View Report
Verify Report
Notepad File
Demo
Checklist UI
Checklist Editor
Code Analysis
Swiss Army Knife
Taught by
Hack in Paris