Loading…
Welcome to the full schedule of the OWASP AppSec Research EU 2013 conference days. You’ll find the schedule for the training days at http://trainings2013.appsec.eu
View analytic
Thursday, August 22 • 9:30am - 1:30pm
WebSensor - Sensing the Web with Community Collectors

Sign up or log in to save this to your schedule and see who's attending!

A huge barrier in web security research is the availability of research data. Web traffic data is too sensitive to be shared among the community to allow researchers for developing new methodologies, testing existing approaches or comparing to each other.


The WebSensor project aims at providing a web honeypot that collects data in the format of the ModSecurity audit log. This allows the use of tools like the jwall-tools to replay the recorded HTTP traffic and extract statistics that are valuable for other OWASP projects, like the OWASP ModSecurity Core Rules project.


Community Oriented
------------------------------
The main idea of the WebSensor project to spawn a community for data collection and data sharing. That is, each participant can run one or more sensors and the data will be collected in a central system. The collected data is then accessible to any participant of the project.

http://www.jwall.org/websensor/

Speakers
avatar for Christian Bockermann

Christian Bockermann

Starting with Linux/network security in 1996, Christian Bockermann has been working in computer security for over 10 years. While working as a Java web-application developer for several years he started concentrating on web-security as major subject. | Alongside to working as a research assistant he is working as a free-lancer in web-security consulting, mostly focused on Apache and ModSecurity. He is also author of several Java free tools supplementary to ModSecurity, most popuplar being the AuditConsole... Read More →


Thursday August 22, 2013 9:30am - 1:30pm
Hafenpanorama I Emporio