Software Engineering by Nick Galbreath
advanced SQLi detection
high speed string transformations in C
Fixing Security by Fixing Development using Continuous Deployment
First presented at Security Development Conference, San Francisco, USA on 2013-05-14
Care and Feeding of Large Scale Graphite Installations
Tips and tricks using and scaling out graphite. First presented at DevOpsDays Austin, Texas, USA on 2013-05-01
SQL-RISC New Directions in SQLi Prevention
Can we reduce successful SQLi attacks by over 90%? First presented at RSA USA on February 27, 2013 in San Francisco.
DevOps The Internal User Growth Team
Guest post by Nick Galbreath for PuppetLabs on the the future of DevOps and being the Internal User Growth Team.
Rebooting (secure) (web) software development with Continuous Deployment
First presented at OWASP AppSec USA in Austin, Texas on October 25, 2012
libinjection and SQLi Obfuscation
First presented at OWASP NYC on September 20, 2012 in New York City.
libinjection: New Techniques in Detecting SQLi Attacks
First presented at iSEC Partners Open Forum at Gilt Group on September 6, 2012 in New York
Continuous Deployment, The New #1 Security Feature
First presented at Security BSides Los Angeles on August 16, 2012 in Hermosa Beach
New Techniques in SQLi Obfuscation: SQL never before used in SQLi
After analysis of tens of thousands of real world SQLi attacks, both WAFs and attackers have missed a number of the finer points of SQL. This presentation was first given at DEFCON 20 in Las Vegas, NV
libinjection: a C library for SQLi detection and generation through lexical analysis of real world attacks.
libinjection: a C library for SQLi detection and generation through lexical analysis of real world attacks. First presented on July 25, 2012 at Black Hat USA, Las Vegas.