- OWASP Live CD: An open environment for Web Application Security Matt Tesauro,
- OWASP Application Security Verification Standard (ASVS) Project Dave Wichers
- Web Application Harvesting Esteban Ribičić
- The Truth about Web Application Firewalls: What the vendors do not want you to know Wendel Guglielmetti Henrique
- Advanced SQL injection exploitation to operating system full control Bernardo Damele Assumpcao Guimaraes
- O2 - Advanced Source Code Analysis Toolkit Dinis Cruz
- Beyond security principles approximation in software architectures Bart De Win
- w3af, A framework to 0wn the web Andrés Riancho,
- CSRF: the nightmare becomes reality? Lieven Desmet,
- Advanced Code Review Techniques - How to Find Needles in the Haystack Efficiently Siddharth Anbalahan
- Real Time Defenses against Application Worms and Malicious Attackers, Michael Coates, :)
- Can an accessible web application be secure? Assessment issues for security testers, developers and auditors Colin Watson
-Michael Coates