OWASP - User contributions [en]

Dallas

2014-08-08T01:32:22Z

Jd smith:

{{Chapter Template|chaptername=Dallas|extra=The chapter leaders are

Chapter Lead- [mailto:mparsons@parsonsisconsulting.com Matt Parsons]

Hospitality/Facilities Lead- [mailto:rikjones@dcccd.edu Rik Jones]

Membership Lead- [mailto:norm.smith75022@gmail.com Norm Smith]

Speakers Lead- [mailto:pperfetti@impactsecurityllc.com Peter Perfetti]

Technology Lead- [mailto:jeffdsmith@gmail.com JD Smith]

Web Lead- [mailto:jeromme.lawler@astechconsulting.com Jeromme Lawler]

Board Member- [mailto:tshelton@hawkdefense.com Tim Shelton]

<br>
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-dallas|emailarchives=http://lists.owasp.org/pipermail/owasp-dallas}}

'''THANKS TO OUR SPONSORS:'''
'''The Dallas Chapter of OWASP would like to thank Richland College for hosting our meetings.'''

== Get Connected and Stay Connected ==

In addition to our [http://bit.ly/fWT3pN Mailing List] we also have a [http://bit.ly/eHEW6O Dallas OWASP Twitter Feed] a [http://on.fb.me/fHr5XY Dallas OWASP Facebook Page] and a [http://linkd.in/g3WxGG Dallas OWASP Linkedin Group]. We invite you to join or follow whichever groups suit you, get involved with your fellow Dallas OWASP Chapter members, and we'll keep them all up to date with the latest official news and announcements from the chapter leadership.

'''Click any of the links below to visit the corresponding Dallas OWASP social networking groups:'''

{| cellspacing="15"
|-
| [[Image:Join the list.png|150px|link=http://bit.ly/fWT3pN]]
| [[Image:Follow-us-on-twitter.png|175px|link=http://bit.ly/eHEW6O]]
| [[Image:Join-us-on-Facebook.jpg|175px|link=http://on.fb.me/fHr5XY]]
| [[Image:Linkedin-button.gif|135px|link=http://linkd.in/g3WxGG]]
|}

=== Announcements ===

== October Meeting ==
'''When:''' Wednesday October 1, 2014 from 11:30 AM – 1:00 PM

'''Topic: '''Succeeding with Enterprise Software Security Key Performance Indicators

Enterprise software security has been a hot topic for over a decade, yet enterprises of all sizes continue to fail at explaining measurable gains, but why? The answer lies in what and how it is measured. Success begins with realistic, business-aligned KPIs which can be effectively measured to demonstrate improvement, or lack thereof. Come learn what, and how to effectively measure software security.

'''Who:''' Rafal Los, Chief Security Evangelist for Hewlett-Packard Software

Rafal Los combines nearly 15 years of subject-matter expertise in information security with a critical business risk management perspective. From technical research to building and implementing enterprise application security programs, Rafal has a track record with organizations of diverse sizes and verticals. He is a featured speaker at events around the globe, and has presented at events produced by OWASP, ISSA, Black Hat, and SANS among many others. He stays active in the community by writing, speaking and contributing research, representing HP in OWASP, the Cloud Security Alliance and other industry groups.

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

=== Previous Meetings ===

== March Meeting ==
'''When:''' Wednesday March 5, 2014 from 11:30 AM – 1:00 PM

'''Topic: ''' OWASP Dallas basic Python tutorial

'''Who:''' Matt Parsons, CISSP MSM

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== September Meeting ==
'''When:''' Wednesday September 11, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' PCI Mobile Payment Acceptance Security Guidelines for Developers

'''Who:''' Ralph Spencer Poore, Director, Emerging Standards at PCI Security Standards Council

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

'''Slides''': [[Media:Dallas OWASP 9-11-2013.pdf]]

== May Meeting ==
'''When:''' Wednesday May 8, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Implementation Patterns for Software Security Programs

'''Who:''' Dan Cornell, Principal, Denim Group

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

== February Meeting ==
'''When:''' Wednesday February 6, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Using Webappsec Vulns to Break Censorship

'''Who:''' Robert Hansen, a.k.a. rsnake

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

== November Meeting ==
'''When:''' Wednesday November 7, 2012 from 11:30 AM – 1:00 PM

'''Topic: ''' Flame, Stuxnet, One to be Named and the Elderwood Project - Today’s Threat Landscape

'''Who:''' John R. Hill, CISSP, Principal Security Strategist Security Business Practice Symantec

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

[http://www.richlandcollege.edu/map/ Map]

== October Meeting ==
'''When:''' Wednesday October 3, 2012 from 11:30 AM – 1:00 PM

'''Topic: ''' Exploitation Techniques and Mitigation

'''Who:''' James McFadyen, Information Security Engineer and Director of Customer Support at HAWK Network Defense, Inc

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

[http://www.richlandcollege.edu/map/ Map]

== September Meeting ==
'''When:''' Wednesday September 12, 2012 from 11:30 AM – 1:00 PM

'''Topic: ''' The Importance of Application Security.

'''Who:''' Peter Perfetti; Director, Security Services & Operations IMPACT Security, LLC

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

[http://www.richlandcollege.edu/map/ Map]

== August Meeting ==
'''When:''' Wednesday August 1, 2012 from 11:30 AM – 1:00 PM

'''Topic: ''' Malicious Math: Recent Real-World Cryptographical and Computational Threats on the Web.

'''Who:''' Derek Soeder, founder, Ridgeway Internet Security

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

[http://www.richlandcollege.edu/map/ Map]

'''Slides''': [[Media:Malicious Math - Final.pptx‎]]

== July Meeting ==
'''When:''' Wednesday July 11, 2012 from 11:30 AM – 1:00 PM

'''Topic: ''' Reinventing Dynamic Testing: Real-Time Hybrid

'''Who:''' Adam Hils; Senior Product Manager HP Enterprise Security Products

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

[http://www.richlandcollege.edu/map/ Map]

== June Meeting ==
'''When:''' Wednesday June 6, 2012 from 11:30 AM – 1:00 PM

'''Topic: ''' Is There An End to Testing Ourselves Secure?

'''Who:''' Rohit Sethi; Vice President, Product Development, SD Elements

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

[http://www.richlandcollege.edu/map/ Map]

== May Meeting ==

'''When:''' Wednesday, May 2, 2012 from 11:30 AM to 1:00 PM

'''Topic: ''' OWASP and PCI DSS Requirement 6.5

OWASP and PCI DSS Requirement 6.5. Keeping current with the OWASP top 10 and how it impacts companies PCI compliance and training. Tony will discuss how McAfee complies to the requirement and how McAfee must make changes to match the current top 10 as well has making sure that developers keep up to date on training.

'''Who:''' Tony Gunn; Director of Security Operations for McAfee

'''Where:'''
North Lake College (Central Campus)
5001 N. MacArthur Blvd.
Irving, TX 75038
Phone: 972-273-3000
Building: A
Room: 206

[http://www.northlakecollege.edu/pages/central-campus-directions.aspx Map]

== March Meeting ==

'''When:''' March 7, 2012, 11:30am - 1:00pm

'''Topic: ''' AAA for Hybrid Cloud Environment

During this session, presented by Symplified, we will explore four areas of interest.

Web, SaaS, Mobile Application Adoption
Protecting sensitive data
WAM for the Public Cloud
Identity Sprawl

'''Who:''' Cullen Landrum, CISSP is a Senior Systems Engineer at Symplified.

'''Where:'''
North Lake College (Central Campus), 5001 N. MacArthur Blvd. Irving, TX 75038
Phone: 972-273-3000
Building: A
Room: 206

[http://www.northlakecollege.edu/pages/central-campus-directions.aspx Map]

== February Meeting ==

'''When:''' February 1, 2012, 11:30am - 1:00pm

'''Topic: ''' Web Application Vulnerability Testing with Nessus

'''Who:''' Rik A. Jones is a Senior Information Security Analyst for the Dallas County Community College District (DCCCD)

'''Where:'''
SMU
Caruth Hall
Palmer Conference Center / 406 Caruth Hall
3145 Dyer Street
Dallas, Texas 75205

[http://smu.edu/maps/campus.asp Map]
(Caruth Hall is building 44 on the campus map link.)

== January Meeting ==

'''When:''' January 11, 2012, 11:30am - 1:00pm

'''Topic: ''' OWASP TOP 10

Power point demonstration of OWASP Top Ten Web Application Security Vulnerabilities with actual hacking examples. This presentation will cover such vulnerabilities as SQL injection, XSS and CSRF. Discussion, hands on exercise and question and answer session.

'''Who:''' Matt Parsons, VP Parsons Software Security Consulting

'''Where:'''
North Lake College (Central Campus)
5001 N. MacArthur Blvd.
Irving, TX 75038
Phone: 972-273-3000
Building: G
Room: 405

[http://www.northlakecollege.edu/pages/central-campus-directions.aspx Map]

==== Presentation Archives ====

== November 7, 2012 ==

'''Title: ''' Internet Security Threat Report

'''Speaker:''' John R. Hill, CISSP, Principal Security Strategist Security Business Practice Symantec

'''Slides''':
[[Media:Symantec_ISTR_17.pdf‎]]

==February 1, 2012==

'''Title''': Web Application Vulnerability Testing with Nessus

'''Speaker''': Rik A. Jones, Senior Information Security Analyst for the Dallas County Community College District (DCCCD)

'''Slides''':
[[Media:Web Application Vul Testing with Nessus 2012.02.01.pdf‎]]<br>
[[Media:OWASP Broken Web Applications 2012.02.01.pdf‎]]

==January 11, 2012==

'''Title''': OWASP TOP 10

'''Speaker''': Matt Parsons, VP Parsons Software Security Consulting

'''Slides''': [[Media:OWASPtopTen.pdf‎]]

__NOTOC__
<headertabs />

[[Category:Texas]]

Dallas

2014-08-08T01:30:57Z

Jd smith:

{{Chapter Template|chaptername=Dallas|extra=The chapter leaders are

Chapter Lead- [mailto:mparsons@parsonsisconsulting. Matt Parsons]

Hospitality/Facilities Lead- [mailto:rikjones@dcccd.edu Rik Jones]

Membership Lead- [mailto:norm.smith75022@gmail.com Norm Smith]

Speakers Lead- [mailto:pperfetti@impactsecurityllc.com Peter Perfetti]

Technology Lead- [mailto:jeffdsmith@gmail.com JD Smith]

Web Lead- [mailto:jeromme.lawler@astechconsulting.com Jeromme Lawler]

Board Member- [mailto:tshelton@hawkdefense.com Tim Shelton]

<br>
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-dallas|emailarchives=http://lists.owasp.org/pipermail/owasp-dallas}}

'''THANKS TO OUR SPONSORS:'''
'''The Dallas Chapter of OWASP would like to thank Richland College for hosting our meetings.'''

== Get Connected and Stay Connected ==

In addition to our [http://bit.ly/fWT3pN Mailing List] we also have a [http://bit.ly/eHEW6O Dallas OWASP Twitter Feed] a [http://on.fb.me/fHr5XY Dallas OWASP Facebook Page] and a [http://linkd.in/g3WxGG Dallas OWASP Linkedin Group]. We invite you to join or follow whichever groups suit you, get involved with your fellow Dallas OWASP Chapter members, and we'll keep them all up to date with the latest official news and announcements from the chapter leadership.

'''Click any of the links below to visit the corresponding Dallas OWASP social networking groups:'''

{| cellspacing="15"
|-
| [[Image:Join the list.png|150px|link=http://bit.ly/fWT3pN]]
| [[Image:Follow-us-on-twitter.png|175px|link=http://bit.ly/eHEW6O]]
| [[Image:Join-us-on-Facebook.jpg|175px|link=http://on.fb.me/fHr5XY]]
| [[Image:Linkedin-button.gif|135px|link=http://linkd.in/g3WxGG]]
|}

=== Announcements ===

== October Meeting ==
'''When:''' Wednesday October 1, 2014 from 11:30 AM – 1:00 PM

'''Topic: '''Succeeding with Enterprise Software Security Key Performance Indicators

Enterprise software security has been a hot topic for over a decade, yet enterprises of all sizes continue to fail at explaining measurable gains, but why? The answer lies in what and how it is measured. Success begins with realistic, business-aligned KPIs which can be effectively measured to demonstrate improvement, or lack thereof. Come learn what, and how to effectively measure software security.

'''Who:''' Rafal Los, Chief Security Evangelist for Hewlett-Packard Software

Rafal Los combines nearly 15 years of subject-matter expertise in information security with a critical business risk management perspective. From technical research to building and implementing enterprise application security programs, Rafal has a track record with organizations of diverse sizes and verticals. He is a featured speaker at events around the globe, and has presented at events produced by OWASP, ISSA, Black Hat, and SANS among many others. He stays active in the community by writing, speaking and contributing research, representing HP in OWASP, the Cloud Security Alliance and other industry groups.

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

=== Previous Meetings ===

== March Meeting ==
'''When:''' Wednesday March 5, 2014 from 11:30 AM – 1:00 PM

'''Topic: ''' OWASP Dallas basic Python tutorial

'''Who:''' Matt Parsons, CISSP MSM

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== September Meeting ==
'''When:''' Wednesday September 11, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' PCI Mobile Payment Acceptance Security Guidelines for Developers

'''Who:''' Ralph Spencer Poore, Director, Emerging Standards at PCI Security Standards Council

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

'''Slides''': [[Media:Dallas OWASP 9-11-2013.pdf]]

== May Meeting ==
'''When:''' Wednesday May 8, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Implementation Patterns for Software Security Programs

'''Who:''' Dan Cornell, Principal, Denim Group

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

== February Meeting ==
'''When:''' Wednesday February 6, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Using Webappsec Vulns to Break Censorship

'''Who:''' Robert Hansen, a.k.a. rsnake

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

== November Meeting ==
'''When:''' Wednesday November 7, 2012 from 11:30 AM – 1:00 PM

'''Topic: ''' Flame, Stuxnet, One to be Named and the Elderwood Project - Today’s Threat Landscape

'''Who:''' John R. Hill, CISSP, Principal Security Strategist Security Business Practice Symantec

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

[http://www.richlandcollege.edu/map/ Map]

== October Meeting ==
'''When:''' Wednesday October 3, 2012 from 11:30 AM – 1:00 PM

'''Topic: ''' Exploitation Techniques and Mitigation

'''Who:''' James McFadyen, Information Security Engineer and Director of Customer Support at HAWK Network Defense, Inc

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

[http://www.richlandcollege.edu/map/ Map]

== September Meeting ==
'''When:''' Wednesday September 12, 2012 from 11:30 AM – 1:00 PM

'''Topic: ''' The Importance of Application Security.

'''Who:''' Peter Perfetti; Director, Security Services & Operations IMPACT Security, LLC

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

[http://www.richlandcollege.edu/map/ Map]

== August Meeting ==
'''When:''' Wednesday August 1, 2012 from 11:30 AM – 1:00 PM

'''Topic: ''' Malicious Math: Recent Real-World Cryptographical and Computational Threats on the Web.

'''Who:''' Derek Soeder, founder, Ridgeway Internet Security

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

[http://www.richlandcollege.edu/map/ Map]

'''Slides''': [[Media:Malicious Math - Final.pptx‎]]

== July Meeting ==
'''When:''' Wednesday July 11, 2012 from 11:30 AM – 1:00 PM

'''Topic: ''' Reinventing Dynamic Testing: Real-Time Hybrid

'''Who:''' Adam Hils; Senior Product Manager HP Enterprise Security Products

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

[http://www.richlandcollege.edu/map/ Map]

== June Meeting ==
'''When:''' Wednesday June 6, 2012 from 11:30 AM – 1:00 PM

'''Topic: ''' Is There An End to Testing Ourselves Secure?

'''Who:''' Rohit Sethi; Vice President, Product Development, SD Elements

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

[http://www.richlandcollege.edu/map/ Map]

== May Meeting ==

'''When:''' Wednesday, May 2, 2012 from 11:30 AM to 1:00 PM

'''Topic: ''' OWASP and PCI DSS Requirement 6.5

OWASP and PCI DSS Requirement 6.5. Keeping current with the OWASP top 10 and how it impacts companies PCI compliance and training. Tony will discuss how McAfee complies to the requirement and how McAfee must make changes to match the current top 10 as well has making sure that developers keep up to date on training.

'''Who:''' Tony Gunn; Director of Security Operations for McAfee

'''Where:'''
North Lake College (Central Campus)
5001 N. MacArthur Blvd.
Irving, TX 75038
Phone: 972-273-3000
Building: A
Room: 206

[http://www.northlakecollege.edu/pages/central-campus-directions.aspx Map]

== March Meeting ==

'''When:''' March 7, 2012, 11:30am - 1:00pm

'''Topic: ''' AAA for Hybrid Cloud Environment

During this session, presented by Symplified, we will explore four areas of interest.

Web, SaaS, Mobile Application Adoption
Protecting sensitive data
WAM for the Public Cloud
Identity Sprawl

'''Who:''' Cullen Landrum, CISSP is a Senior Systems Engineer at Symplified.

'''Where:'''
North Lake College (Central Campus), 5001 N. MacArthur Blvd. Irving, TX 75038
Phone: 972-273-3000
Building: A
Room: 206

[http://www.northlakecollege.edu/pages/central-campus-directions.aspx Map]

== February Meeting ==

'''When:''' February 1, 2012, 11:30am - 1:00pm

'''Topic: ''' Web Application Vulnerability Testing with Nessus

'''Who:''' Rik A. Jones is a Senior Information Security Analyst for the Dallas County Community College District (DCCCD)

'''Where:'''
SMU
Caruth Hall
Palmer Conference Center / 406 Caruth Hall
3145 Dyer Street
Dallas, Texas 75205

[http://smu.edu/maps/campus.asp Map]
(Caruth Hall is building 44 on the campus map link.)

== January Meeting ==

'''When:''' January 11, 2012, 11:30am - 1:00pm

'''Topic: ''' OWASP TOP 10

Power point demonstration of OWASP Top Ten Web Application Security Vulnerabilities with actual hacking examples. This presentation will cover such vulnerabilities as SQL injection, XSS and CSRF. Discussion, hands on exercise and question and answer session.

'''Who:''' Matt Parsons, VP Parsons Software Security Consulting

'''Where:'''
North Lake College (Central Campus)
5001 N. MacArthur Blvd.
Irving, TX 75038
Phone: 972-273-3000
Building: G
Room: 405

[http://www.northlakecollege.edu/pages/central-campus-directions.aspx Map]

==== Presentation Archives ====

== November 7, 2012 ==

'''Title: ''' Internet Security Threat Report

'''Speaker:''' John R. Hill, CISSP, Principal Security Strategist Security Business Practice Symantec

'''Slides''':
[[Media:Symantec_ISTR_17.pdf‎]]

==February 1, 2012==

'''Title''': Web Application Vulnerability Testing with Nessus

'''Speaker''': Rik A. Jones, Senior Information Security Analyst for the Dallas County Community College District (DCCCD)

'''Slides''':
[[Media:Web Application Vul Testing with Nessus 2012.02.01.pdf‎]]<br>
[[Media:OWASP Broken Web Applications 2012.02.01.pdf‎]]

==January 11, 2012==

'''Title''': OWASP TOP 10

'''Speaker''': Matt Parsons, VP Parsons Software Security Consulting

'''Slides''': [[Media:OWASPtopTen.pdf‎]]

__NOTOC__
<headertabs />

[[Category:Texas]]