OWASP - User contributions [en]

Ecuador Student Chapter

2013-09-30T12:46:23Z

Galoget J. Latorre Ch.: More Corrections

__NOTOC__

= About =

== About our Chapter ==
The Chapter was officially founded by [[User:Galoget J. Latorre Ch.|Galoget J. Latorre Ch.]] as a Project of [http://hackem-epn.blogspot.com/ Hackem Research Group] at National Polytechnic School (Quito, Ecuador) in May 2012.

The chapter activities started the same month, after the [https://www.owasp.org/index.php/LatamTour2012#Quito OWASP Latam Tour 2012] that was celebrated at [http://www.epn.edu.ec National Polytechnic School] (Quito - Ecuador) with the presence of [[User:Fabio.e.cerullo|Fabio Cerullo]] who is part of the Global Education Committee and OWASP Ireland Chapter Leader.

For the Chapter the following resources were created by our members:
*[https://www.owasp.org/index.php?title=Ecuador_Student_Chapter OWASP Ecuador Student Chapter Site]
*[http://owasp-ec.blogspot.com/ OWASP Ecuador Student Chapter Blog]
*[http://www.facebook.com/owasp.ecuador OWASP Ecuador Student Chapter Facebook Page]
*[https://twitter.com/OWASPEcuadorEPN @OWASPEcuadorEPN]
*[https://lists.owasp.org/mailman/listinfo/owasp-ecuador_student_chapter OWASP Ecuador Student Chapter Official Mailing List]

The chapter aims to be active on a National wide level not only by participating at different IT events but also by organizing free and open for everyone conferences, workshops and meetings about Application Security and Information Security in general.

Also a Special Course in the University was opened and is dictated by the Chapter Leader in the Systems Engineering Faculty:

[http://pregrado.virtualepn.edu.ec/course/view.php?id=342 Ethical Hacking - OWASP by Galoget Latorre]

Implementation of [[OWASP_Hackademic_Challenges_Project|OWASP Hackademic Challenges Project]] for OWASP Hackem Challenges Training in [https://hack.me/101101/owasp-hackem-challenges.html hack.me] was created in order to demonstrate the OWASP Top 10 Vulnerabilities:
[https://hack.me/101101/owasp-hackem-challenges.html OWASP Hackem Challenges]

== Meetings ==

Members' meetings are held every Saturday, discussing various topics about Security.

== Contact ==

If you want to contact our chapter, you can use any of the links provided before.

== Sponsorship/Membership ==
[[Image:Btn_donate_SM.gif|link=http://owasp-ec.blogspot.com/]] (From our blog) to this chapter or become a local chapter supporter.

= Activities =

Since our foundation every semester we visit new students from Systems Engineering Faculty introducing [[Ecuador_Student_Chapter|OWASP Ecuador Student Chapter]], our activities, projects, meetings and our work.

== Hackem Research Group - May 17th - 18th, 2012: ==

[http://hackem-epn.blogspot.com/2012/05/owasp-latam-tour-2012-escuela.html Supporting the OWASP Latam Tour 2012]

== Hackem Research Group - May 18th, 2012 ==

The OWASP Ecuador Student Chapter is officially founded by [[User:Galoget J. Latorre Ch.|Galoget J. Latorre Ch.]] in National Polytechnic School ([http://www.epn.edu.ec EPN]) with the presence of [[User:Fabio.e.cerullo|Fabio Cerullo]] and [[User:Ramiro_Pulgar|Ramiro Pulgar]] after the [https://www.owasp.org/index.php/LatamTour2012#Quito OWASP Latam Tour 2012] .

== Hackem Research Group - August 4th - December 22nd, 2012: ==

A Special Course in the University was opened and was dictated by the Chapter Leader in the Systems Engineering Faculty:

[http://pregrado.virtualepn.edu.ec/course/view.php?id=342 Ethical Hacking - OWASP by Galoget Latorre]

== Hackem Research Group - August 18th, 2012 - Nowadays: ==

Implementation of [[OWASP_Hackademic_Challenges_Project|OWASP Hackademic Challenges Project]] for OWASP Hackem Challenges Training in [https://hack.me/101101/owasp-hackem-challenges.html hack.me] was created in order to demonstrate the OWASP Top 10 Vulnerabilities:

[https://hack.me/101101/owasp-hackem-challenges.html OWASP Hackem Challenges]

== Hackem Research Group - September 18th, 2012: ==
A conference given by Galoget Latorre and a CTF prepared by our chapter about OWASP Top 10 in the Software Freedom Day 2012 at EPN.

[http://wiki.softwarefreedomday.org/2012/Ecuador/Quito/F&B%20SISTEMAS Software Freedom Day 2012 - Ethical Hacking (OWASP) (SFD Official Site)]

[http://hackem-epn.blogspot.com/2012/09/dia-de-la-libertad-de-software-software.html Ethical Hacking - OWASP (Hackem Research Group Blog)]

== Hackem Research Group - September 19th - 23rd, 2012: ==

Our Chapter was invited to Campus Party Quito 2012, and our leader gave 3 Conferences related with Security:
*Social Engineering - Hacking the Human Mind
*Cybercrime & Cyberwarfware in Ecuador
*Cyberbullying - Harassment through the Internet

After every speech, our team invited people to join our chapter and participate on it.

Also our Chapter Leader was the Winner in a Malware Analysis Contest organized by ESET, after the award, Galoget Latorre introduced our chapter inviting people to participate on it.

[http://www.epn.edu.ec/index.php?option=com_content&view=article&id=2088 Official Announce on National Polytechnic School Site]

[http://www.elcomercio.ec/tecnologia/Premiaciones-ultimo-dia-Campus-Party_0_779322101.html Awards on the last day of Campus Party Quito 2012 (El Comercio)]

== Hackem Research Group - January 3rd - June 29th, 2013: ==
A Special Course in our University was re-opened and was dictated by the Chapter Leader in the Systems Engineering Faculty:

[http://pregrado.virtualepn.edu.ec/course/view.php?id=342 Ethical Hacking - OWASP by Galoget Latorre]

== Hackem Research Group - January 31st - February 3rd, 2013: ==
Participation and Triumph of the Chapter Leader in "Cybersecurity for the Next Generation - South American Round 2013" organized by Kaspersky Lab, after the award the Leader spoke about the Local Chapter in his University inviting people to participate on it.

[http://www.kaspersky.com/about/news/business/2013/First_Ever_South_American_Round_of_Kaspersky_Lab_Student_Conference_Hailed_a_Success First Ever South American Round of Kaspersky Lab Student Conference Hailed a Success (Kaspersky.com)]

[http://www.conocimiento.gob.ec/epn-destaca-triunfos-internacionales-de-su-estudiante-galoget-latorre/ EPN destaca triunfos internacionales de su estudiante Galoget Latorre (Conocimiento.gob.ec)]

== Hackem Research Group - March 27th - March 28th, 2013: ==
Participation and Support on [[LatamTour2013#Quito|OWASP Latam Tour 2013]], part of our chapter (a team of 4 members) won the 2nd place of OWASP Latam Tour CTF organized by [[Ecuador|OWASP Ecuador Chapter]], for more details see:

[http://hackem-epn.blogspot.com/2013/03/owasp-latam-tour-2013-utpl-hackem.html OWASP Latam Tour 2013 UTPL - Hackem]

At the same time there was a Global CTF for Latam organized by honeyn3t, our Chapter Leader, Galoget Latorre, was part of the Top 30 Scoreboard for Latin America.
<blockquote class="twitter-tweet">Scoreboard from Latam ~top30 [https://twitter.com/AppSecLatam AppSecLatam] [http://t.co/ocfajmIL6U pic.twitter.com/ocfajmIL6U]— HoneyN3t (@HoneyN3t) [https://twitter.com/HoneyN3t/statuses/320509969701163011 April 6, 2013]</blockquote>
<center>[[File:OWASP_Latam_CTF_Scoreboard.png]]</center>

== Hackem Research Group - May 4th, 2013: ==
A conference about "Hacking an Insecure Server in 5 Minutes - Ethical Hacking (OWASP)" was given by our chapter leader: [[User:Galoget J. Latorre Ch.|Galoget Latorre]] and a CTF was prepared by our chapter members.

The objective of this Conference was to show the risks about Web Applications that were developed without Secure Coding Principles, after the event our leader invited people to join our chapter.

[http://flisol.net/FLISOL2013/Ecuador/Quito FLISoL 2013 celebrated in Quito, Ecuador by Hackem Research Group (flisol.net)]

[http://hackem-epn.blogspot.com/2013/04/flisol-2013-ecuador-hackem-epn.html FLISoL 2013 en Quito, Ecuador en la EPN (Hackem Research Group Blog)]

== Hackem Research Group - August 13th, 2013: ==
Our chapter organized a Conference about Internet Privacy and Web Security Risks that was given by [https://olabini.com/ Ola Bini] (from [http://www.thoughtworks.com/ ThoughtWorks]), more info:

[http://hackem-epn.blogspot.com/2013/08/conferencia-gratuita-privacidad-en.html Internet Privacy Conference (Hackem Research Group Blog)]

== Hackem Research Group - September 18th - September 22nd, 2013: ==
Our chapter again is invited to Campus Party Quito 2013 and our leader gave 4 Conferences related to Security and our chapter:
* Analysis of a Trojan Horse for Microsoft Windows (Reverse Engineering)
* Hacking a Web Server by exploiting Web Apps Vulnerabilities
* Malware Creation the easy way for Attackers
* Entrepreneurship, how to start from the University?

[http://www.campus-party.com.ec/2013/seguridad-y-redes.html Campus Party Quito - Security & Networks (Official Announce)]

[http://hackem-epn.blogspot.com/2013/09/galoget-j-latorre-ch-presentara.html Galoget Latorre on Campus Party Quito 2013 talking about Security & OWASP (Hackem Research Group Blog)]

[http://www.pcworld.com.ec/analisis-de-malware-en-la-zona-innovacion/ Malware Analysis in #cpquito3 - PCWorld]

[http://www.epn.edu.ec/index.php?option=com_content&view=article&id=2474:la-comunidad-de-software-libre-y-seguridad-informatica-hackem-estara-presente-en-el-campus-party-quito-2013&catid=391:ultimas-noticias-&Itemid=581 Hackem Research Group on Campus Party Quito 3 (EPN Site)]

<headertabs />

[[Category:Student Chapter]]

Ecuador Student Chapter

2013-09-30T12:40:02Z

Galoget J. Latorre Ch.: Some Corrections

__NOTOC__

= About =

== About our Chapter ==
The Chapter was officially founded by [[User:Galoget J. Latorre Ch.|Galoget J. Latorre Ch.]] as a Project of [http://hackem-epn.blogspot.com/ Hackem Research Group] at National Polytechnic School (Quito, Ecuador) in May 2012.

The chapter activities started the same month, after the [https://www.owasp.org/index.php/LatamTour2012#Quito OWASP Latam Tour 2012] that was celebrated at [http://www.epn.edu.ec National Polytechnic School] (Quito - Ecuador) with the presence of [[User:Fabio.e.cerullo|Fabio Cerullo]] who is part of the Global Education Committee and OWASP Ireland Chapter Leader.

For the Chapter the following resources were created by our members:
*[https://www.owasp.org/index.php?title=Ecuador_Student_Chapter OWASP Ecuador Student Chapter Site]
*[http://owasp-ec.blogspot.com/ OWASP Ecuador Student Chapter Blog]
*[http://www.facebook.com/owasp.ecuador OWASP Ecuador Student Chapter Facebook Page]
*[https://twitter.com/OWASPEcuadorEPN @OWASPEcuadorEPN]
*[https://lists.owasp.org/mailman/listinfo/owasp-ecuador_student_chapter OWASP Ecuador Student Chapter Official Mailing List]

The chapter aims to be active on a National wide level not only by participating at different IT events but also by organizing free and open for everyone conferences, workshops and meetings about Application Security and Information Security in general.

Also a Special Course in the University was opened and is dictated by the Chapter Leader in the Systems Engineering Faculty:

[http://pregrado.virtualepn.edu.ec/course/view.php?id=342 Ethical Hacking - OWASP by Galoget Latorre]

Implementation of [[OWASP_Hackademic_Challenges_Project|OWASP Hackademic Challenges Project]] for OWASP Hackem Challenges Training in [https://hack.me/101101/owasp-hackem-challenges.html hack.me] was created in order to demonstrate the OWASP Top 10 Vulnerabilities:
[https://hack.me/101101/owasp-hackem-challenges.html OWASP Hackem Challenges]

== Meetings ==

Members' meetings are held every Saturday, discussing various topics about Security.

== Contact ==

If you want to contact our chapter, you can use any of the links provided before.

== Sponsorship/Membership ==
[[Image:Btn_donate_SM.gif|link=http://owasp-ec.blogspot.com/]] (From our blog) to this chapter or become a local chapter supporter.

= Activities =

Since our foundation every semester we visit new students from Systems Engineering Faculty introducing [[Ecuador_Student_Chapter|OWASP Ecuador Student Chapter]], our activities, projects, meetings and our work.

== Hackem Research Group - May 17th - 18th, 2012: ==

[http://hackem-epn.blogspot.com/2012/05/owasp-latam-tour-2012-escuela.html Supporting the OWASP Latam Tour 2012]

== Hackem Research Group - May 18th, 2012 ==

The OWASP Ecuador Student Chapter is officially founded by [[User:Galoget J. Latorre Ch.|Galoget J. Latorre Ch.]] in National Polytechnic School ([http://www.epn.edu.ec EPN]) with the presence of [[User:Fabio.e.cerullo|Fabio Cerullo]] and [[User:Ramiro_Pulgar|Ramiro Pulgar]] after the [https://www.owasp.org/index.php/LatamTour2012#Quito OWASP Latam Tour 2012] .

== Hackem Research Group - August 4th - December 22nd, 2012: ==

A Special Course in the University was opened and was dictated by the Chapter Leader in the Systems Engineering Faculty:

[http://pregrado.virtualepn.edu.ec/course/view.php?id=342 Ethical Hacking - OWASP by Galoget Latorre]

== Hackem Research Group - August 18th, 2012 - Nowadays: ==

Implementation of [[OWASP_Hackademic_Challenges_Project|OWASP Hackademic Challenges Project]] for OWASP Hackem Challenges Training in [https://hack.me/101101/owasp-hackem-challenges.html hack.me] was created in order to demonstrate the OWASP Top 10 Vulnerabilities:

[https://hack.me/101101/owasp-hackem-challenges.html OWASP Hackem Challenges]

== Hackem Research Group - September 18th, 2012: ==

[http://wiki.softwarefreedomday.org/2012/Ecuador/Quito/F&B%20SISTEMAS Ethical Hacking - OWASP, a conference about OWASP Top 10 in the Software Freedom Day 2012 at EPN by Galoget Latorre (Official Site)]

[http://hackem-epn.blogspot.com/2012/09/dia-de-la-libertad-de-software-software.html Ethical Hacking - OWASP, a conference about OWASP Top 10 in the Software Freedom Day 2012 at EPN by Galoget Latorre (Hackem Research Group Blog)]

== Hackem Research Group - September 19th - 23rd, 2012: ==

Our Chapter was invited to Campus Party Quito 2012, and our leader gave 3 Conferences related with Security:
*Social Engineering - Hacking the Human Mind
*Cybercrime & Cyberwarfware in Ecuador
*Cyberbullying - Harassment through the Internet

After every speech, our team invited people to join our chapter and participate on it.

Also our Chapter Leader was the Winner in a Malware Analysis Contest organized by ESET, after the award, Galoget Latorre introduced our chapter inviting people to participate on it.

[http://www.epn.edu.ec/index.php?option=com_content&view=article&id=2088 Official Announce on National Polytechnic School Site]

[http://www.elcomercio.ec/tecnologia/Premiaciones-ultimo-dia-Campus-Party_0_779322101.html Awards on the last day of Campus Party Quito 2012 (El Comercio)]

== Hackem Research Group - January 3rd - June 29th, 2013: ==
A Special Course in our University was re-opened and was dictated by the Chapter Leader in the Systems Engineering Faculty:

[http://pregrado.virtualepn.edu.ec/course/view.php?id=342 Ethical Hacking - OWASP by Galoget Latorre]

== Hackem Research Group - January 31st - February 3rd, 2013: ==
Participation and Triumph of the Chapter Leader in "Cybersecurity for the Next Generation - South American Round 2013" organized by Kaspersky Lab, after the award the Leader spoke about the Local Chapter in his University inviting people to participate on it.

[http://www.kaspersky.com/about/news/business/2013/First_Ever_South_American_Round_of_Kaspersky_Lab_Student_Conference_Hailed_a_Success First Ever South American Round of Kaspersky Lab Student Conference Hailed a Success (Kaspersky.com)]

[http://www.conocimiento.gob.ec/epn-destaca-triunfos-internacionales-de-su-estudiante-galoget-latorre/ EPN destaca triunfos internacionales de su estudiante Galoget Latorre (Conocimiento.gob.ec)]

== Hackem Research Group - March 27th - March 28th, 2013: ==
Participation and Support on [[LatamTour2013#Quito|OWASP Latam Tour 2013]], part of our chapter (a team of 4 members) won the 2nd place of OWASP Latam Tour CTF organized by [[Ecuador|OWASP Ecuador Chapter]], for more details see:

[http://hackem-epn.blogspot.com/2013/03/owasp-latam-tour-2013-utpl-hackem.html OWASP Latam Tour 2013 UTPL - Hackem]

At the same time there was a Global CTF for Latam organized by honeyn3t, our Chapter Leader, Galoget Latorre, was part of the Top 30 Scoreboard for Latin America.
<blockquote class="twitter-tweet">Scoreboard from Latam ~top30 [https://twitter.com/AppSecLatam AppSecLatam] [http://t.co/ocfajmIL6U pic.twitter.com/ocfajmIL6U]— HoneyN3t (@HoneyN3t) [https://twitter.com/HoneyN3t/statuses/320509969701163011 April 6, 2013]</blockquote>
<center>[[File:OWASP_Latam_CTF_Scoreboard.png]]</center>

== Hackem Research Group - May 18th, 2013: ==
A conference about "Hacking an Insecure Server in 5 Minutes - Ethical Hacking (OWASP)" was given by our chapter leader: [[User:Galoget J. Latorre Ch.|Galoget Latorre]]

The objective of this Conference was to show the risks about Web Applications that were developed without Secure Coding Principles, after the event our leader invited people to join our chapter.

[http://flisol.net/FLISOL2013/Ecuador/Quito FLISoL 2013 celebrated in Quito, Ecuador by Hackem Research Group (flisol.net)]

[http://hackem-epn.blogspot.com/2013/04/flisol-2013-ecuador-hackem-epn.html FLISoL 2013 en Quito, Ecuador en la EPN (Hackem Research Group Blog)]

== Hackem Research Group - August 13th, 2013: ==
Our chapter organized a Conference about Internet Privacy and Web Security Risks that was given by [https://olabini.com/ Ola Bini] (from [http://www.thoughtworks.com/ ThoughtWorks]), more info:

[http://hackem-epn.blogspot.com/2013/08/conferencia-gratuita-privacidad-en.html Internet Privacy Conference (Hackem Research Group)]

== Hackem Research Group - September 18th - September 22nd, 2013: ==
Our chapter again is invited to Campus Party Quito 2013 and our leader gave 4 Conferences related to Security and our chapter:
* Analysis of a Trojan Horse for Microsoft Windows (Reverse Engineering)
* Hacking a Web Server by exploiting Web Apps Vulnerabilities
* Malware Creation the easy way for Attackers
* Entrepreneurship, how to start from the University?

[http://www.campus-party.com.ec/2013/seguridad-y-redes.html Campus Party Quito - Security & Networks (Official Announce)]

[http://hackem-epn.blogspot.com/2013/09/galoget-j-latorre-ch-presentara.html Galoget Latorre on Campus Party Quito 2013 talking about Security & OWASP (Hackem Research Group Blog)]

[http://www.pcworld.com.ec/analisis-de-malware-en-la-zona-innovacion/ Malware Analysis in #cpquito3 - PCWorld]

[http://www.epn.edu.ec/index.php?option=com_content&view=article&id=2474:la-comunidad-de-software-libre-y-seguridad-informatica-hackem-estara-presente-en-el-campus-party-quito-2013&catid=391:ultimas-noticias-&Itemid=581 Hackem Research Group on Campus Party Quito 3 (EPN Site)]

<headertabs />

[[Category:Student Chapter]]

File:OWASP Latam CTF Scoreboard.png

2013-09-30T12:35:19Z

Galoget J. Latorre Ch.: OWASP Latam CTF Scoreboard - honeyn3t

OWASP Latam CTF Scoreboard - honeyn3t

Ecuador Student Chapter

2013-09-30T12:34:39Z

Galoget J. Latorre Ch.: Updated

__NOTOC__

= About =

== About our Chapter ==
The Chapter was officially founded by [[User:Galoget J. Latorre Ch.|Galoget J. Latorre Ch.]] as a Project of [http://hackem-epn.blogspot.com/ Hackem Research Group] at National Polytechnic School (Quito, Ecuador) in May 2012.

The chapter activities started the same month, after the [https://www.owasp.org/index.php/LatamTour2012#Quito OWASP Latam Tour 2012] that was celebrated at [http://www.epn.edu.ec National Polytechnic School] (Quito - Ecuador) with the presence of [[User:Fabio.e.cerullo|Fabio Cerullo]] who is part of the Global Education Committee and OWASP Ireland Chapter Leader.

For the Chapter the following resources were created by our members:
*[https://www.owasp.org/index.php?title=Ecuador_Student_Chapter OWASP Ecuador Student Chapter Site]
*[http://owasp-ec.blogspot.com/ OWASP Ecuador Student Chapter Blog]
*[http://www.facebook.com/owasp.ecuador OWASP Ecuador Student Chapter Facebook Page]
*[https://twitter.com/OWASPEcuadorEPN @OWASPEcuadorEPN]
*[https://lists.owasp.org/mailman/listinfo/owasp-ecuador_student_chapter OWASP Ecuador Student Chapter Official Mailing List]

The chapter aims to be active on a National wide level not only by participating at different IT events but also by organizing free and open for everyone conferences, workshops and meetings about Application Security and Information Security in general.

Also a Special Course in the University was opened and is dictated by the Chapter Leader in the Systems Engineering Faculty:

[http://pregrado.virtualepn.edu.ec/course/view.php?id=342 Ethical Hacking - OWASP by Galoget Latorre]

Implementation of [[OWASP_Hackademic_Challenges_Project|OWASP Hackademic Challenges Project]] for OWASP Hackem Challenges Training in [https://hack.me/101101/owasp-hackem-challenges.html hack.me] was created in order to demonstrate the OWASP Top 10 Vulnerabilities:
[https://hack.me/101101/owasp-hackem-challenges.html OWASP Hackem Challenges]

== Meetings ==

Members' meetings are held every Saturday, discussing various topics about Security.

== Contact ==

If you want to contact our chapter, you can use any of the links provided before.

== Sponsorship/Membership ==
[[Image:Btn_donate_SM.gif|link=http://hackem-epn.blogspot.com/]] (From our blog) to this chapter or become a local chapter supporter.

= Activities =

Since our foundation every semester we visit new students from Systems Engineering Faculty introducing [[Ecuador_Student_Chapter|OWASP Ecuador Student Chapter]], our activities, projects, meetings and our work.

== Hackem Research Group - May 17th - 18th, 2012: ==

[http://hackem-epn.blogspot.com/2012/05/owasp-latam-tour-2012-escuela.html Supporting the OWASP Latam Tour 2012]

== Hackem Research Group - May 18th, 2012 ==

The OWASP Ecuador Student Chapter is officially founded by [[User:Galoget J. Latorre Ch.|Galoget J. Latorre Ch.]] in National Polytechnic School ([http://www.epn.edu.ec EPN]) with the presence of [[User:Fabio.e.cerullo|Fabio Cerullo]] and [[User:Ramiro_Pulgar|Ramiro Pulgar]] after the [https://www.owasp.org/index.php/LatamTour2012#Quito OWASP Latam Tour 2012] .

== Hackem Research Group - September 18th, 2012: ==

[http://wiki.softwarefreedomday.org/2012/Ecuador/Quito/F&B%20SISTEMAS Ethical Hacking - OWASP, a conference about OWASP Top 10 in the Software Freedom Day 2012 at EPN by Galoget Latorre (Official Site)]

[http://hackem-epn.blogspot.com/2012/09/dia-de-la-libertad-de-software-software.html Ethical Hacking - OWASP, a conference about OWASP Top 10 in the Software Freedom Day 2012 at EPN by Galoget Latorre (Hackem Research Group Blog)]

== Hackem Research Group - September 19th - 23rd, 2012: ==

Our Chapter was invited to Campus Party Quito 2012, and our leader gave 3 Conferences related with Security:
*Social Engineering - Hacking the Human Mind
*Cybercrime & Cyberwarfware in Ecuador
*Cyberbullying - Harassment through the Internet

After every speech, our team invited people to join our chapter and participate on it.

Also our Chapter Leader was the Winner in a Malware Analysis Contest organized by ESET, after the award, Galoget Latorre introduced our chapter inviting people to participate on it.

[http://www.epn.edu.ec/index.php?option=com_content&view=article&id=2088 Official Announce on National Polytechnic School Site]

[http://www.elcomercio.ec/tecnologia/Premiaciones-ultimo-dia-Campus-Party_0_779322101.html Awards on the last day of Campus Party Quito 2012 (El Comercio)]

== Hackem Research Group - August 4th - December 22nd, 2012: ==

A Special Course in the University was opened and was dictated by the Chapter Leader in the Systems Engineering Faculty:

[http://pregrado.virtualepn.edu.ec/course/view.php?id=342 Ethical Hacking - OWASP by Galoget Latorre]

== Hackem Research Group - August 18th - December 22nd, 2012: ==

Implementation of [[OWASP_Hackademic_Challenges_Project|OWASP Hackademic Challenges Project]] for OWASP Hackem Challenges Training in [https://hack.me/101101/owasp-hackem-challenges.html hack.me] was created in order to demonstrate the OWASP Top 10 Vulnerabilities:

[https://hack.me/101101/owasp-hackem-challenges.html OWASP Hackem Challenges]

== Hackem Research Group - January 3rd - June 29th, 2013: ==
A Special Course in our University was re-opened and was dictated by the Chapter Leader in the Systems Engineering Faculty:

[http://pregrado.virtualepn.edu.ec/course/view.php?id=342 Ethical Hacking - OWASP by Galoget Latorre]

== Hackem Research Group - January 31st - February 3rd, 2013: ==
Participation and Triumph of the Chapter Leader in "Cybersecurity for the Next Generation - South American Round 2013" organized by Kaspersky Lab, after the award the Leader spoke about the Local Chapter in his University inviting people to participate on it.

[http://www.kaspersky.com/about/news/business/2013/First_Ever_South_American_Round_of_Kaspersky_Lab_Student_Conference_Hailed_a_Success First Ever South American Round of Kaspersky Lab Student Conference Hailed a Success (Kaspersky.com)]

[http://www.conocimiento.gob.ec/epn-destaca-triunfos-internacionales-de-su-estudiante-galoget-latorre/ EPN destaca triunfos internacionales de su estudiante Galoget Latorre (Conocimiento.gob.ec)]

== Hackem Research Group - March 27th - March 28th, 2013: ==
Participation and Support on [[LatamTour2013#Quito|OWASP Latam Tour 2013]], part of our chapter (a team of 4 members) won the 2nd place of OWASP Latam Tour CTF organized by [[Ecuador|OWASP Ecuador Chapter]], for more details see:

[http://hackem-epn.blogspot.com/2013/03/owasp-latam-tour-2013-utpl-hackem.html OWASP Latam Tour 2013 UTPL - Hackem]

At the same time there was a Global CTF for Latam organized by honeyn3t, our Chapter Leader, Galoget Latorre, was part of the Top 30 Scoreboard for Latin America.
<blockquote class="twitter-tweet">Scoreboard from Latam ~top30 [https://twitter.com/AppSecLatam AppSecLatam] [http://t.co/ocfajmIL6U pic.twitter.com/ocfajmIL6U]— HoneyN3t (@HoneyN3t) [https://twitter.com/HoneyN3t/statuses/320509969701163011 April 6, 2013]</blockquote>
<center>[[File:OWASP_Latam_CTF_Scoreboard.png]]</center>

== Hackem Research Group - May 18th, 2013: ==
A conference about "Hacking an Insecure Server in 5 Minutes - Ethical Hacking (OWASP)" was given by our chapter leader: [[User:Galoget J. Latorre Ch.|Galoget Latorre]]

The objective of this Conference was to show the risks about Web Applications that were developed without Secure Coding Principles, after the event our leader invited people to join our chapter.

[http://flisol.net/FLISOL2013/Ecuador/Quito FLISoL 2013 celebrated in Quito, Ecuador by Hackem Research Group (flisol.net)]

[http://hackem-epn.blogspot.com/2013/04/flisol-2013-ecuador-hackem-epn.html FLISoL 2013 en Quito, Ecuador en la EPN (Hackem Research Group Blog)]

== Hackem Research Group - August 13th, 2013: ==
Our chapter organized a Conference about Internet Privacy and Web Security Risks that was given by [https://olabini.com/ Ola Bini] (from [http://www.thoughtworks.com/ ThoughtWorks]), more info:

[http://hackem-epn.blogspot.com/2013/08/conferencia-gratuita-privacidad-en.html Internet Privacy Conference (Hackem Research Group)]

== Hackem Research Group - September 18th - September 22nd, 2013: ==
Our chapter again is invited to Campus Party Quito 2013 and our leader gave 4 Conferences related to Security and our chapter:
* Analysis of a Trojan Horse for Microsoft Windows (Reverse Engineering)
* Hacking a Web Server by exploiting Web Apps Vulnerabilities
* Malware Creation the easy way for Attackers
* Entrepreneurship, how to start from the University?

[http://www.campus-party.com.ec/2013/seguridad-y-redes.html Campus Party Quito - Security & Networks (Official Announce)]

[http://hackem-epn.blogspot.com/2013/09/galoget-j-latorre-ch-presentara.html Galoget Latorre on Campus Party Quito 2013 talking about Security & OWASP (Hackem Research Group Blog)]

[http://www.pcworld.com.ec/analisis-de-malware-en-la-zona-innovacion/ Malware Analysis in #cpquito3 - PCWorld]

[http://www.epn.edu.ec/index.php?option=com_content&view=article&id=2474:la-comunidad-de-software-libre-y-seguridad-informatica-hackem-estara-presente-en-el-campus-party-quito-2013&catid=391:ultimas-noticias-&Itemid=581 Hackem Research Group on Campus Party Quito 3 (EPN Site)]

<headertabs />

[[Category:Student Chapter]]

User:Galoget J. Latorre Ch.

2013-09-09T08:33:40Z

Galoget J. Latorre Ch.: Corrections

I am studying Systems Engineering (Computer Science) at National Polytechnic School and I like very much topics related with Computer Security: Cybersecurity, Malware Research, Information Security, Crypto, Web Security.

I am President, CEO and Founder of Hackem Research Group, this is a Free Software and Computer Security Group that uses the OWASP Documentation and Software to Study Web Application Security and Countermeasures to prevent Vulnerabilities while working on Development Projects.

Another objective of Hackem Research Group is promoting the use, development and research of Free Technologies for education as a better alternative than Privative Software.

I like to teach about Computer Security and to participate in Security Events (Conferences, Wargames, CTF and more). Nowadays I am a Developer of Free Software and an Independent Security Researcher.

I am OWASP Chapter Leader in Ecuador at EPN, if you want to know more about our chapter or Hackem Research Group, here are some useful links.
*[https://www.owasp.org/index.php?title=Ecuador_Student_Chapter&setlang=es/ OWASP Ecuador Chapter EPN - Site]
*[http://www.facebook.com/owasp.ecuador OWASP Ecuador Chapter EPN - Facebook Page]
*[http://owasp-ec.blogspot.com/ OWASP Ecuador Chapter EPN - Blog]
*[http://hackem-epn.blogspot.com/ Hackem Research Group - Site]
*[https://www.facebook.com/hackem.epn Hackem Research Group - Facebook Page]

User:Galoget J. Latorre Ch.

2013-09-09T08:25:05Z

Galoget J. Latorre Ch.: Update 2

I am from Ecuador,
I am studying Systems Engineering (Computer Science) at National Polytechnic School (Escuela Politécnica Nacional) and I like very much topics related with Computer Security: Cybersecurity, Malware Research, Information Security, Crypto, Web Security.

I am President, CEO and Founder of Hackem Research Group, this is a Free Software and Information Security Group that uses the OWASP Documentation and Software to Study Web Application Security and Countermeasures to prevent Vulnerabilities while working on Development Projects.

Another objective of Hackem Research Hroup is promoting the use, development and research of Free Technologies for education as a better alternative than Privative Software.

I like to teach about Computer Security and also I like to participate in conferences and other Security Events.

I am a Developer of Free Software and and independente Security Researcher.

I am OWASP Chapter Leader in Ecuador at EPN, if you want to know more about our chapter or Hackem Research Group, here are some useful links.
*[https://www.owasp.org/index.php?title=Ecuador_Student_Chapter&setlang=es/ OWASP Ecuador Chapter EPN - Site]
*[http://www.facebook.com/owasp.ecuador OWASP Ecuador Chapter EPN - Facebook Page]
*[http://owasp-ec.blogspot.com/ OWASP Ecuador Chapter EPN - Blog]
*[http://hackem-epn.blogspot.com/ Hackem Research Group - Site]
*[https://www.facebook.com/hackem.epn Hackem Research Group - Facebook Page]

User:Galoget J. Latorre Ch.

2013-09-09T07:46:23Z

Galoget J. Latorre Ch.: Update

I am from Ecuador,
I am studying Systems Engineering (Computer Science) at National Polytechnic School (Escuela Politécnica Nacional) and I like very much topics related with Computer Security: Cybersecurity, Malware Research, Information Security, Crypto, Web Security.

I am President, CEO and Founder of Hackem Research Group, this is a Free Software and Information Security Group that uses the OWASP Documentation and Software to Study Web Application Security and Countermeasures to prevent Vulnerabilities while working on Development Projects.

Another objective of Hackem Research Hroup is promoting the use, development and research of Free Technologies for education as a better alternative than Privative Software.

I like to teach about Computer Security or giving conferences in my University and other Security Events.

I am a Developer of Free Software and and independente Security Researcher.

I am OWASP Chapter Leader in Ecuador at EPN, if you want to know more about our chapter or Hackem Research Group, here are some useful links.
*[https://www.owasp.org/index.php?title=Ecuador_Student_Chapter&setlang=es/ OWASP Ecuador Chapter EPN - Site]
*[http://www.facebook.com/owasp.ecuador OWASP Ecuador Chapter EPN - Facebook Page]
*[http://owasp-ec.blogspot.com/ OWASP Ecuador Chapter EPN - Blog]
*[http://hackem-epn.blogspot.com/ Hackem Research Group - Site]
*[https://www.facebook.com/hackem.epn Hackem Research Group - Facebook Page]

Inyección SQL

2012-12-04T05:10:22Z

Galoget J. Latorre Ch.: Creación de la Página de Inyección SQL en Español

{{Template:Attack}}
[[Category:OWASP ASDR Project]]
[[Category:Security Focus Area]]
__NOTOC__ 

== Visión General==
Un ataque por [[inyección SQL]] consiste en la inserción o “inyección” de una consulta SQL por medio de los datos de entrada desde el cliente hacia la aplicación. Un ataque por inyección SQL exitoso puede leer información sensible desde la base de datos, modificar la información (Insert/ Update/ Delete), ejecutar operaciones de administración sobre la base de datos (tal como parar la base de datos), recuperar el contenido de un determinado archivo presente sobre el sistema de archivos del DBMS y en algunos casos emitir comandos al sistema operativo. Los ataques por inyección SQL son un tipo de [[Top 10 2007-Injection Flaws | ataque de inyección]], en el cual los comandos SQL son insertados en la entrada de datos con la finalidad de efectuar la ejecución de comandos SQL predefinidos.

== Modelamiento de la amenaza==
* Los ataques por inyección SQL permiten a los atacantes suplantar identidad, alterar datos existentes, causar problemas de repudio como anular transacciones o cambiar balances, permite la revelación de todos los datos en el sistema, destruir los datos o si no volverlos inasequibles, y convertirse en administradores del servidor de base de datos.
* La inyección SQL es muy común con aplicaciones PHP y ASP debido a la prevalencia de interfaces funcionales obsoletas. Debido a la naturaleza de las interfaces programáticas disponibles, las aplicaciones J2EE y ASP.NET tienen menor probabilidad de ser fácilmente atacadas por una inyección SQL.
* La gravedad de una inyección SQL está limitada por la habilidad e imaginación del atacante, y en menor medida a las contramedidas, como por ejemplo las conexiones con bajo privilegio al servidor de bases de datos, entre otras. En general, se considera a la inyección SQL de alto impacto.

== Actividades de Seguridad Relacionadas==

=== Cómo evitar las vulnerabilidades por inyección SQL===
Ver en la [[:Category:OWASP Guide Project|Guía de OWASP]] el artículo sobre cómo [[Guide to SQL Injection | evitar las vulnerabilidades por inyección SQL]] . 
Ver Hoja de Tips para [[Guide to SQL Injection | Prevenir la Inyeccion por SQL]].

=== Cómo revisar el código para vulnerabilidades de inyección por SQL ===
Ver el artículo en la [[:Category:OWASP Code Review Project| Guía de Revisión de Código OWASP]] sobre Cómo revisar el código para vulnerabilidades de inyección por SQL.
=== Cómo Probar las Vulnerabilidades de Inyección SQL.===
Ver en la [[:Category:OWASP Testing Project|OWASP Testing Guide]] el artículo sobre cómo [[Testing for SQL Injection (OWASP-DV-005)| hacer Pruebas de Vulnerabilidad de Inyección SQL]].

== Descripción==
Una inyección SQL ocurre cuando:
# Los datos ingresan en un programa desde una fuente que no es de confianza.
# Los datos construyen dinámicamente una consulta SQL.
Las principales consecuencias son:

* '''Confidencialidad ''': Dado que las bases de datos SQL generalmente almacenan información sensible, la pérdida de la confiabilidad es un problema frecuente con las vulnerabilidades de [[Glossary#SQL Injection|inyección SQL]].
* '''Autenticación''': Si se utilizan consultas SQL pobres para chequear nombres de usuarios u contraseñas, puede ser posible conectarse a un sistema como otro usuario sin conocimiento previo de la contraseña.
* '''Autorización''': Si la información de autorización es almacenada en una base de datos SQL, puede ser posible cambiar esta información mediante la explotación exitosa de una vulnerabilidad por [[Glossary#SQL Injection| inyección SQL]].

* '''Integridad''': Así como puede ser posible leer información sensible, también es posible realizar cambios o incluso borrar esta información mediante un ataque por [[Glossary#SQL Injection| inyección SQL]].

== Factores de Riesgo==
La plataforma afectada puede ser:
* Lenguaje: SQL
* Plataforma: Cualquiera (requiere de interacción con una base de datos SQL).
La [[Glossary#SQL Injection|inyección SQL]] se ha convertido en un problema común con sitios web que cuentan con base de datos. La falla es fácilmente detectada y fácilmente explotada, y como tal, cualquier sitio o paquete de software con incluso una mínima base de usuario es propenso a ser objeto de un intento de ataque de este tipo.
Esencialmente, el ataque es llevado a cabo mediante la colocación de un meta carácter en los datos de entrada para colocar comandos SQL en el plano de control, el cual antes no existía. Este error depende del hecho de que SQL no hace real distinción entre los planos de datos y los de control.
== Ejemplos==

===Example 1===

En SQL:

<pre>
select id, firstname, lastname from authors
</pre>

Si uno proporciona:

<pre>
Firstname: evil'ex
Lastname: Newman
</pre>

La cadena de consulta se convierte en:
<pre>
select id, firstname, lastname from authors where forename = 'evil'ex' and surname ='newman'
La cual la base de datos intenta ejecutar como:
</pre>

<pre>
Incorrect syntax near il' as the database tried to execute evil.
</pre>

Una versión segura de la anterior instrucción SQL podría ser codificada en Java como:

<pre>
String firstname = req.getParameter("firstname");
String lastname = req.getParameter("lastname");
// FIXME: do your own validation to detect attacks
String query = "SELECT id, firstname, lastname FROM authors WHERE forename = ? and surname = ?";
PreparedStatement pstmt = connection.prepareStatement( query );
pstmt.setString( 1, firstname );
pstmt.setString( 2, lastname );
try
{
ResultSet results = pstmt.execute( );
}
</pre>

=== Ejemplo 2===

El siguiente código C# dinámicamente construye y ejecuta una consulta SQL que busca ítems que concuerden con un nombre específico. La consulta restringe los ítems mostrados a aquellos en los que el propietario concuerda con el username del usuario actualmente autenticado.

<pre>
...
string userName = ctx.getAuthenticatedUserName();
string query = "SELECT * FROM items WHERE owner = "'"
+ userName + "' AND itemname = '"
+ ItemName.Text + "'";
sda = new SqlDataAdapter(query, conn);
DataTable dt = new DataTable();
sda.Fill(dt);
...
</pre>

La consulta que este código intenta ejecutar es:

<pre>
SELECT * FROM items
WHERE owner =
AND itemname = ;
</pre>

Sin embargo, dado que la consulta es construida dinámicamente concatenando una cadena de consulta base constante y una cadena ingresada por el usuario, la consulta solo funciona correctamente si itemName no contiene un carácter de comilla simple. Si un atacante con el nombre de usuario wiley ingresa la cadena “name’ OR ‘a’=’a” para itemName, entonces la consulta se convierte en lo siguiente:

<pre>
SELECT * FROM items
WHERE owner = 'wiley'
AND itemname = 'name' OR 'a'='a';
</pre>

La adición de la condición OR ‘a’=’a’ causa que la clausula where siempre sea evaluada como verdadera, de este modo la consulta se vuelve lógicamente equivalente a la mucho más simple consulta:

<pre>
SELECT * FROM items;
</pre>

La simplificación de la consulta permite al atacante evitar el requerimiento de que la consulta solamente retorne ítems pertenecientes al usuario autenticado; la consulta ahora retorna todas las entradas almacenadas en la tabla de ítems, sin tener en cuenta al propietario especificado.

=== Ejemplo 3===

Este ejemplo examina los efectos de un valor malicioso diferente pasado a la consulta construida y ejecutada en el ejemplo 1. Si un atacante con el nombre de usuario hacker ingresa la cadena "hacker'); DELETE FROM items; --" for itemName, la consulta se convierte en las siguientes dos consultas:

<pre>
SELECT * FROM items
WHERE owner = 'hacker'
AND itemname = 'name';

DELETE FROM items;

--'
</pre>

Muchos servidores de base de datos, incluyendo Microsoft® SQL Server 2000, permiten múltiples sentencias SQL separadas por punto y coma ser ejecutadas a la vez. Aunque la cadena de este ataque resulta en un error en Oracle y otros servidores de base de datos que no permiten la ejecución en batch de sentencias separadas por punto y coma, en bases de datos que sí permiten la ejecución en batch, este tipo de ataque permite al atacante ejecutar comandos arbitrariamente contra la base de datos.

Note el par de guiones consecutivos, los cuales especifican a la mayoría de servidores de bases de datos que lo restante de la sentencia es tratado como un comentario y no se ejecuta. En este caso el carácter de comentario sirve para remover la posterior comilla simple sobrante de la consulta modificada. En una base de datos donde no se permite usar comentarios de este modo, el ataque general podría continuar siendo efectivo usando un truco similar al mostrado en el Ejemplo 1. Si un atacante ingresa la cadena “name’); DELETE FROM ítems; SELECT * FROM ítems WHERE 'a'='a", las siguientes tres sentencias válidas serán creadas:

<pre>
SELECT * FROM items
WHERE owner = 'hacker'
AND itemname = 'name';

DELETE FROM items;

SELECT * FROM items WHERE 'a'='a';
</pre>

Un método tradicional para prevenir ataques por inyección SQL es manejarlos como un problema de validación de entrada y aceptar solamente caracteres de una lista blanca de valores seguros o identificar y evadir una lista negra de valores potencialmente maliciosos. El Whitelisting puede ser un medio muy eficaz para hacer cumplir estrictas reglas de validación de entrada, sin embargo las sentencias SQL parametrizadas requieren menor mantenimiento y puede ofrecer mas garantías con respecto a la seguridad. Como es casi siempre el caso, el blacklisting está plagado de lagunas que hacen inefectivo prevenir los ataques por inyección SQL. Por ejemplo, los atacantes pueden:

* Tomar como objetivo a campos que no se encuentran citados.
* Encontrar maneras para evadir la necesidad de ciertos meta-caracteres.
* Usar procedimientos almacenados para ocultar los meta-caracteres inyectados

Evadir manualmente caracteres en la entrada para consultas SQL puede ser útil, pero esto no hace a su aplicación segura ante ataques de inyección SQL.
Otra solución comúnmente propuesta para tratar con los ataques por inyección SQL es la utilización de procesos almacenados. Si bien los procedimientos almacenados previenen algunos tipos de ataques por inyección SQL, fracasan al proteger contra muchos otros. Por ejemplo, el siquiente procedimiento PL/SQL es vulnerable a la misma inyección SQL mostrada en el primer ejemplo.

<pre>
procedure get_item (
itm_cv IN OUT ItmCurTyp,
usr in varchar2,
itm in varchar2)
is
open itm_cv for ' SELECT * FROM items WHERE ' ||
'owner = '''|| usr ||
' AND itemname = ''' || itm || '''';
end get_item;
</pre>

Los procedimientos almacenados típicamente ayudan a prevenir ataques por inyección SQL limitando los tipos de sentencias que pueden ser pasadas a sus parámetros. Sin embargo, hay muchas maneras en torno a las limitaciones y muchas sentencias interesantes que todavía pueden ser pasadas a los procedimientos almacenados. Una vez más, los procedimientos almacenados pueden provenir algunas explotaciones, pero no harán a su aplicación segura contra ataques de inyección SQL.

== [[Threat Agents|Agentes de Amenaza]] Relacionados==
* [[:Category:Command Execution|Categoría: Ejecución de Comandos.]]
* [[Injection problem|Problema de Inyección]].

== [[Ataques]] Relacionados==
* [[Top 10 2007-Injection Flaws | Ataque por inyección]]
* [[Inyeccion Ciega de SQL]]
* [[Inyección de Código]]
* [[Codificación Doble]]
* [[Interpreter_Injection#ORM_Injection]]

== [[Vulnerabilidades]] Relacionadas==
* [[:Category:Input Validation Vulnerability| Categoría: Vulnerabilidad de Validación de Entrada]]

==Related [[Controls]]==
* [[Input Validation| Validación de Entrada]]
* [[Output Validation: Validación en Salida]]
* [[Static Code Analysis: Análisis de Código Estático]]

==Referencias==
* [http://www.websec.ca/kb/sql_injection SQL Injection Knowledge Base] - A reference guide for MySQL, MSSQL and Oracle SQL Injection attacks.
* [http://www.greensql.net/ GreenSQL Open Source SQL Injection Filter] - An Open Source database firewall used to protect databases from SQL injection attacks.
* [http://www.net-security.org/dl/articles/IntegrigyIntrotoSQLInjectionAttacks.pdf An Introduction to SQL Injection Attacks for Oracle Developers] - This also includes recommended defenses.
* OWASP [[:Category:OWASP_SQLiX_Project | SQLiX Project]] - An SQL Injection Scanner.
* [http://www.nosec.org/en/pangolin.html Pangolin] - Closed source SQL Injection Scanner.

[[Category:Injection]]
[[Category: Attack]]

User:Galoget J. Latorre Ch.

2012-11-08T09:39:04Z

Galoget J. Latorre Ch.: Added OWASP FB Page and corrections

I am from Ecuador,
I am studying Systems Engineering at Escuela Politécnica Nacional and I like very much Cybersecurity and Information Security.

I am President, CEO and Founder of Hackem Community, this is a Free Software and Information Security Group that uses the OWASP Documentation and Software to Study Web Application Security and Countermeasures to prevent Vulnerabilities while working on Development Projects.

Another objective of Hackem Community is promoting the use, development and research of Free Technologies for education as a better alternative than Privative Software.

I like to teach Information Security in my University and other Security Events.

I am a Developer of Free Software and Researcher of Information Security in National Polytechnic University.

I am Chapter Leader in Ecuador at EPN.

[https://www.owasp.org/index.php?title=Ecuador_Student_Chapter&setlang=es/ OWASP Ecuador Chapter - Site]

[http://www.facebook.com/owasp.ecuador OWASP Ecuador Chapter - EPN FB Page]

[http://owasp-ec.blogspot.com/ OWASP Ecuador Chapter - EPN Blog]

[http://imagenfis.epn.edu.ec/hackem Hackem Community - Site]

[https://www.facebook.com/hackem.epn Hackem Community FB Page]

User talk:Galoget J. Latorre Ch.

2012-11-04T22:30:24Z

Galoget J. Latorre Ch.: Response

'''Welcome to ''OWASP''!'''

We hope you will contribute much and well.

You will probably want to read the [[Help:Contents|help pages]].

Again, welcome and have fun!

[[User:KateHartmann|KateHartmann]] 12:36, 2 November 2012 (UTC)

<hr>

Thank you very much, I am going to update the Wiki, since the chapter started in May 2012.

Greetings!

[[User:Galoget J. Latorre Ch.|Galoget J. Latorre Ch.]] 22:32, 4 November 2012 (UTC)

User:Galoget J. Latorre Ch.

2012-11-03T07:12:06Z

Galoget J. Latorre Ch.: Added more personal Info

I am from Ecuador,
I am studying Systems Engineering at Escuela Politécnica Nacional and I like very much Cybersecurity and Information Security.

I am President, CEO and Founder of Hackem Community, this is a Free Software and Information Security Group that uses the OWASP Documentation and Software to Study Web Application Security and Countermeasures to prevent Vulnerabilities while working on Development Projects.

I like to teach Information Security in my University and other Security Events.

I am Leader Chapter in Ecuador at EPN.

[https://www.owasp.org/index.php?title=Ecuador_Student_Chapter&setlang=es/ OWASP Ecuador Chapter - Site]

[http://owasp-ec.blogspot.com/ OWASP Ecuador Chapter - EPN Blog]

[http://imagenfis.epn.edu.ec/hackem Hackem Community - Site]

[https://www.facebook.com/hackem.epn Hackem Community FB Page]

Ecuador Student Chapter

2012-11-02T21:41:10Z

Galoget J. Latorre Ch.:

__NOTOC__
= News =

= Activities =

Hackem - September 18th 2012

http://imagenfis.epn.edu.ec/hackem/eventos/software-freedom-day-2012-hackem-epn/

== September 12th 2012 ==

The OWASP Ecuador Student Chapter is officially founded by Galoget J. Latorre Ch. in the Escuela Politécnica Nacional (EPN).

= About =

<headertabs />

[[Category:Student Chapter]]

User talk:Galoget J. Latorre Ch.

2012-11-02T21:34:18Z

Galoget J. Latorre Ch.: