Web Frameworks And How They Kill Traditional Security Scanning presented at OWASP Appsec 2010
by Lars Andren (Armorize Technologies), Christian Hang (Armorize Technologies),
URL : http://www.owasp.org/index.php/OWASP_AppSec_Research_2010_-_Stockholm,_Sweden#tab=June_23