Hi there,

I am going to close off this thread now as it's pointless. There are closed and open source tools - you don't have to use any of them, but it's handy to know that they exist. As list admin, if I think a tool, open or closed source is worth you looking at, I will approve it. This goes for Fortify, OWASP, IBM, WASC, HP, SANS, Burp, any project anywhere.

The rules are:

? Any vendor or project - closed. commercial or open source project can announce a new or new major version once.
? Minor version announcements will not be approved.
? Asking for beta testers might be approved, but not as part of your astroturfing campaign
? Chatter about a product, such as how do I do blah is okay as long as it's not obvious astroturfing
? Asking for bake offs or similar are most likely going to be binned. Everyone's circumstances are different and what works well for you may not work at all for someone else.

For example, the excellent Burp Suite 1.3 is now out. It's closed source. It's free and there's a Pro $$$ version. I use it. PortSwigger could announce it here and I'd approve it. But 1.3.1, well that's not going to be approved as it's a minor version.

This goes for

? Tools
? Documents (e.g. OWASP Guide, ASVS, WASC Threat Classification, etc)
? On-topic Resources (articles, papers, and websites)
? On-topic Conferences (e.g. BH / OWASP / Ruxcon / AusCERT, etc) but not sales-y conferences.
? On-topic Certifications (CLSSP, SANS GSSP, etc)

The only restriction is that whatever is announced must be relevant to the interests of the list.

If you want to sponsor this list, please speak to Security Focus staff. I'm sure they'd be delighted.

thanks,
Andrew van der Stock
your friendly list admin

This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now!
http://www.cenzic.com/2009HClaunch_Securityfocus
--------------------------------------

[ reply ]