RandomStorm acquire DVWA
RandomStorm have acquired Damn Vulnerable Web App (DVWA) :)
RandomStorm showed their interest in DVWA and wanted to help the project grow. After some weeks of talks we have settled on an agreement which I believe will benefit the DVWA project immensely.
What do RandomStorm do?
RandomStorm was formed in 2007 to provide a proactive vulnerability management service for companies and organisations that take network security seriously and need to demonstrate maximum due diligence in protecting personal and corporate information.
rfc in your pocket
I wanted to start reading the RFC 2616 HTTP/1.1, because who knows more about how HTTP works than the inventors right?! The only problem was, is that I hate reading large documents from screens, I lose concentration after very little time and end up on Twitter or some other social networking site.
So I started looking for printed RFCs, someone must have put these in a book?! Well, it turns out that I couldn’t find any. I thought about printing the entire RFC from my university library (£0.10 a page) however RFC 2616 contains 176 pages (£17.60 total). I remembered that OWASP use lulu.com for printing their awesome books, so I decided to print my own RFC and make it into a book. After many hours of trying to fit the A4 RFC into a pocket-size (4.25″ x 6.88″) book, getting the font size right, aligning the page numbers and getting the formatting just right on all 176 pages, ‘rfc in your pocket’ was ready to upload! After lots of trial and error with reformatting and trying to get the whole thing to fit I decided to order one for myself.
1 year on
Today is exactly one year on after posting my first post on the blog. I had a premature celebration (couldn’t hold the excitement) by changing the design as you have all probably noticed. I am still working on he re-design so there may still be some glitches here and there, bear with me.
I have come a long way since that first post and learnt a great deal. In 12 months I have created and managed DVWA to the success it is now with lots of help from the community. I have done talks, written articles and been a guest on some great podcasts. I completed my first year at university with the grade I set out to achieve and I am now half way through my second year still going strong.
All this I could not have achieved with out my friends, family and the online security community. The infosec community is always there to lend a hand and has opened up great opportunity’s for me. If you are an Ethical Hacking student or security professional and your not involved in the community, I cant stress enough how beneficial it is to contribute and learn from the amazing people that our out there. I would like to name names however there’s so many of you that have helped me I’m afraid I might miss some one out.
With out you the reader there would be no point in me keeping the blog updated with new posts, so please comment, give feedback and let me know what you would like to see more of. Also, don’t forget to subscribe! Blue box on the right. ;) –>
Again a big thank you to you all.
Blog updates
Just to let everyone know that we are now running the latest version of wordpress, finally! If you haven’t noticed already there’s a ‘Security Jobs’ RSS feed which grabs RSS feeds off a number of job sites, the link can be found in the sidebar above the google ads.
Ive fixed the footer as it was out of line and also made the pagination a little bit nicer however during the process of updating the site I seem to have messed up the ‘pages’, the ones in the green bar at the top. Haven’t a clue whats gone wrong, spent the past few hours staring at CSS, PHP and HTML and still cannot figure out what I have done!!! I’m going to leave it for now and come back to it another day.
Some exiting news…
Me and some other lads from university have started a project called ‘ScreenStamp!’ I will be posting about it shortly.
General update
Just to let everyone know that I’m still alive. Haven’t posted in nearly a month! Been busy with university and also had a couple of jobs on the side.
Damn Vulnerable Web App got a mention on irongeek.com this month! Thanks irongeek!
Deliberately Insecure Web Applications For Learning Web App Security
I will be posting about my views regarding BBC Click Online hacking into botnets, using them to carry out tests and then changing the computers wallpapers to make the users aware that they were zombies. Is that legal? I will be posting about this over the next few days.
Mean while check out the video: BBC team exposes cyber crime risk
