Blogs & Stories

SpiderLabs Blog

Attracting more than a half-million annual readers, this is the security community's go-to destination for technical breakdowns of the latest threats, critical vulnerability disclosures and cutting-edge research.

ModSecurity Training at Blackhat USA 2009

Just a quick note to let everyone know that a 2-day ModSecurity training class was added to the upcoming Blackhat USA 2009 conference in Las Vegase - http://www.blackhat.com/html/bh-usa-09/train-bh-usa-09-categories-appsec.html. This class will be focused on the ModSecurity Rules Language and using it for virtual patching purposes. We will have a hands-on lab on day 2 that covers the OWASP Securing WebGoat with ModSecurity project data. This will expand upon the Blackhat Federal presentation that I gave earlier this year - http://www.blackhat.com/html/bh-dc-09/bh-dc-09-speakers.html#Barnett. So, if you want to get your hands dirty using the latest and greatest features of ModSecurity, including Content Injection and Lua, then this class is for you!