Sorry for the late post, but I was in Greece speaking at OWASP AppSecEU and I didn’t get this out on time. Lots going on as we speed toward our actual 1.0 release for ThreadFix:
- We pushed out Beta18 last Thursday. This includes a number of improvements to various importers and reports to clean things up a bit. We’re really looking for feedback on the importers so please beat them up and if you run into any issues either report a bug in the bug tracker or email me directly – dan _at_ denimgroup.com.
- I gave a talk at OWASP AppSecEU titled “Benchmarking Web Application Scanners for YOUR Organization” that used ThreadFix’s scan merge technology in its demonstration. You can see some of Colin Watson’s comments on the presentation online and you can see the slides online as well.
- Also if you are headed to BlackHat 2012 please stop by and see us talk about ThreadFix at the BlackHat Arsenal. We’re in Pod 3 from 10:15 until 11:15 both Wednesday, July 25th and Thursday, July 26th. In addition, Josh Sokol and I will be talking at BSidesLV 2012 about Symbiotic Security using ThreadFix and its virtual patching capabilities for the demonstration. I believe we will be presenting at 2pm on Thursday July 26th, but check the actual schedule to be sure.
Contact us if you have any questions about how ThreadFix can help you and your organization better manage application-level vulnerabilities –Dan
dan _at_ denimgroup.com