Continuous web application vulnerability scanning isn't a standard practice. It should be! Here are my thoughts on making it happen.
The NoVa chapter of OWASP is meeting on 4/11. Topic: Impact of IPv6 On Your Applications.
Continuous Integration Security Testing
A comparison of 4 free and open source web application vulnerability scanners for inclusion in a continuous integration (CI) process for automated security testing.
PCI DSS Compliance: A High Level View
These are my high level notes for completing a self-assessment questionnaire (SAQ) for PCI DSS compliance for an SMB. From figuring out what merchant level you are, to determining scope, to reporting your results to your acquiring bank - here's how to get it done.
Detecting SQL Injection Vulnerabilities
How to detect SQLi vulnerabilities, examples of web application errors that indicate SQLi, and an introduction to web application vulnerability scanners.