Jeremiah Grossman of WhiteHat Security to Present 'Hacking Intranet Websites from the Outside' at RSA Conference


WhiteHat's Founder and CTO to Deliver Technical Presentation Demonstrating the Latest Web Threats at the 2007 RSA Conference

SANTA CLARA, Calif., Jan. 29 --
Who: Jeremiah Grossman, CTO and Founder of WhiteHat Security, a leading provider of Website vulnerability management services

What: Session: Hacking Intranet Websites From the Outside
(Session code: HT2-107)

When: Tuesday, February 6, at 4:10-5:20p.m. PST

Where: RSA Conference - Green Room 104

WhiteHat Security today announced that Jeremiah Grossman, the Company's founder and CTO, will lead a technical session at this year's RSA Conference in San Francisco. The presentation, "Hacking Intranet Websites from the Outside," will address the increasing prevalence of Javascript malware, the threats associated with it, why organizations must understand it and how they can defend against it.

Session learning objectives include:
oHow a user is first infected or attacked using a malicious Web page or
Cross-Site Scripting vulnerability;
oHow a Web browser can be completely controlled or monitored remotely;
oHow a Web browser can be used as a stepping stone to perform network
reconnaissance on internal networks; and,
oHow to exploit internal machines using a compromised Web browser.

Grossman will demonstrate a wide variety of cutting-edge website attack techniques and describe best practices for securing websites and users against these threats, including:

oPort scanning and attacking intranet devices using JavaScript;
oBlind Web server fingerprinting using unique URLs;
oDiscovery NAT'ed IP addresses with Java Applets;
oStealing Web browser history with Cascading Style Sheets;
oBest-practice defense measures for securing Websites; and,
oEssential habits for safe Web surfing.

In addition to his position at WhiteHat, Jeremiah Grossman is a world- renowned expert in website vulnerability management and a founding member of the Web Application Security Consortium (WASC). He is a frequent speaker at industry events including the Black Hat Briefings, ISACA's Network Security Conference, NASA, the Air Force and Technology Conference, ISSA and Defcon. Grossman is also a featured expert and frequent contributor on TechTarget's SearchAppSecurity.com site.

About WhiteHat Security
Headquartered in Santa Clara, California, WhiteHat Security is a leading provider of website vulnerability management services. WhiteHat delivers turnkey solutions that enable companies to secure valuable customer data, comply with industry standards and maintain brand integrity. WhiteHat Sentinel, the company's flagship service, is the only solution that incorporates expert analysis and industry-leading technology to provide unparalleled coverage to protect critical data from attacks. For more information about WhiteHat Security, please visit our website, www.whitehatsec.com.

First Call Analyst:
FCMN Contact:

Source: WhiteHat Security

CONTACT: Dawn van Hoegaerden of WhiteHat Security,
+1-408-492-1817 ext. 14, or dawn@whitehatsec.com; or Rachel Miller of
+SHIFT
Communications, +1-617-681-1256 or whitehat@shiftcomm.com, for WhiteHat Security

Web site: www.whitehatsec.com/

More from Electronic Components & Devices

All Topics