Kyiv

Become a Speaker

Call For Speakers at OWASP Kyiv events is permanently open. If you want to present at future events, review and agree with the OWASP Speaker Agreement and check for upcoming events at https://cfp.owaspukraine.org, or simply send the title and abstract of your talk and speaker bio to Vlad Styran or Ihor Bliumental.

Become a Sponsor

To sponsor an OWASP Kyiv event, contact Vlad Styran or Ihor Bliumental.

We don't have any special sponsorship package, however the sponsoring organization or individual will receive our warm thanks and a fair amount of gratitude spread over our social media presence, placed at the chapter official web-page, and announced at the event itself.

Become a Host

To host an OWASP Kyiv event, contact Vlad Styran or Ihor Bliumental.

Venue requirements include:

• Capacity to welcome up to 100 attendees
• Possibility to host a lunch (paid separately by the Chapter)
• Separate high-quality internet connection for online streaming
• No need for additional attendee registration or providing attendee lists
• No marketing, advertising, or hiring at the event

Announcements

Chapter Meetup Fall 2019

Hosted by Grammarly.	Sponsored by Trend Micro.

Date Nov 23 Location Grammarly Kyiv, Sportyvna Square, 1a, Kyiv, Ukraine 01601

Program

Event schedule

2019 | 2018 | 2017

2019

Chapter Meetup Summer 2019

Hosted by EVO.	Sponsored by Pentest.com.ua.

Date Aug 3, 2019 Location EVO Company 02121, Україна, м Київ, Харківське шосе, 201/203, корпус 2-А, літера Ф

Program

Event schedule

1. “Top Mobile Applications Vulnerabilities” by Svyatoslav Login | Video
2. Web Application Security Quiz | No video
3. Mitre ATT&CK in Practice. Detectors, Alerting, Coverage by Den Iuzvyk | Video
4. “How to Find Security Vulnerabilities in Python Applications?” by Andrey Shalaenko | Video
5. “Как manual QA может протестировать проект со стороны security + XSS” by Evgeny Tolchinsky | Video
6. Ruby Security Tips - Roman Rott | Video

Chapter Meetup Spring 2019

Hosted by Ciklum.	Sponsored by WebbyLab.

Date Apr 6, 2019 Location Sky Point (Ciklum Kyiv, 20th floor): 12 Amosova street, Horizon Park business center, Kyiv, Ukraine

Program

Event schedule

1. All about Subdomain Takeover attack - Workshop (Kostiantyn Sanduliak) | Video
2. Overview of iOS apps security assessment - Workshop (Dmytro Diordiichuk) | Video
3. Shooting yourself in the feet with PHP (Taras Sharkadi) | Video
4. Your web application is vulnerable! (Dmytro Naumenko) | Video
5. OWASP Mobile Security Testing Guide (MSTG) in Real Life (Julia Potapenko) | Video
6. Adversarial attacks on Deep Neural Networks (Andrey Shalaenko) | Video

Chapter Meetup Winter 2019

Hosted by InnoHub	Sponsored by Berezha Security

Date Feb 2, 2019 Location InnoHub, 6-z, Vatslava Havela Blvd, Kyiv, Ukraine, 03124

Program

Event schedule

1. 10:00 Web Application Firewall bypass techniques - Workshop (Bohdan Lukin) | Video
2. 11:40 Subdomain discovering as an essential part of the reconnaissance phase - Workshop (Kostiantyn Sanduliak) | Video
3. 13:20 Introduction lstio Service Mesh (Stanislav Kolenkin) | Video
4. 14:50 OWASP Top-10 A2: Broken Authentication (Svyatoslav Login) | Video
5. 15:40 Email as an initial attack vector (Arthur Hil) | Video
6. 16:30 Building SQL firewall: insights from developers (Artem Storozhuk) | Video
7. 17:20 Application Threat Modeling (Vlad Styran) | Video

2018

Chapter Meetup Fall 2018

Hosted by MacPaw	Sponsored by HackenProof

Date Sep 29, 2018 Location MacPaw, 81 Antonovycha Street, Kyiv, Ukraine

Program

1. 10:00 Serhii Korolenko - XSS from zer0 to Hero (workshop) | Video
2. 11:30 Eduard Babych - Burp Suite: from First Run to Website Hack in 60 min (workshop) | Video
3. 12:30 Oleksii Baranovskyi - BeEF it up (workshop) | Video
4. 14:00 Stanislav Kolenkin - How to Secure Your Kubernetes Cluster | Video
5. 15:00 Valentin Averin - AppSec Requirements in PCI DSS | Video
6. 16:00 Artem Tykhonov - Setting up the Setapp Bug Bounty Program | Video

Chapter Meetup Summer 2018

Hosted by Ciklum.	Sponsored by Linkos Group.

Date Jul 14, 2018 Location Sky Point (Ciklum Kyiv, 20th floor): 12 Amosova street, Horizon Park business center, Kyiv, Ukraine

Program

1. Stanislav Kolenkin - Kubernetes Security | Video
2. Stanislav Kolenkin - Practical Kubernetes Security (Workshop) | Video
3. Pavlo Radchuk - Smart Contracts Security: Understanding Token Security (Workshop) | Video
4. Ali Huseyn Aliyev - The Browser Does Not Protect You | Video
5. Olha Pasko - Security Baseline for Incident Response | Video
6. Yan Kravchenko - Evolution of Application Security Programs and OWASP SAMM 2.0 | Video
7. Andriy Shalaenko - Intro to JS and Vue.js Sandbox Escape | Video

Chapter Meetup Spring 2018

Date Mar 3, 2018, Location Sky Point (Ciklum Kyiv, 20th floor): 12 Amosova street, Horizon Park business center, Kyiv, Ukraine

Program

Morning Workshops

1. Serhii Korolenko - Crack The Hash Workshop | Video
2. Vlad Styran - Pentesting Android Apps | Video

Afternoon Talks

1. Vlad Styran - OWASP Kyiv 2017 Results and 2018 Plans | Slides | Video
2. Vlada Kulish - Why So Serial? Threats to Modern Serialization Capabilities | Slides | Video
3. Roman Borodin - ISC2 & ISACA Certifications First-hand Experience | Slides | Video
4. Ihor Bliumental - WebSocket Security | Slides | Video
5. Oleksii Dorogan - A Struggle to Start a Bug Bounty for a .gov.ua. | Video
6. Yevhen Teleshyk - Phishing Threats to Cloud Users | Slides | Video

2017

Chapter Meetup Winter 2017

Date Dec 2, 2017, Location Student Center of State University of Telecommunications, 7 Solomianska Street, Kyiv, Ukraine

Program

Morning Workshops

1. Kyrylo Hobrenyak - Bash Scripting 101 | Video
2. Vladyslav Makalish & Ivan Berdnik - Cloud Security at AWS | Video

Afternoon Talks

1. Anastasiia Vixentael - Don’t Waste Time on Learning Cryptography: Better Use It Properly | Video | Slides
2. Pavel Radchuk - SAMM: Understanding Agile in Security | Video | Slides
3. Vlad Styran - Security Economics | Video | Slides
4. Dima Kovalenko - Modern SSL Pinning | Video | Slides
5. Ivan Vyshnevskyi - Not So Quiet git push | Video | Slides

Photo album by Serhiy Rekun

Event writeup by Ivan Vyshnevskyi

Chapter Meetup Fall 2017

Date Sep 9, 2017 Location Student Center of State University of Telecommunications, 7 Solomianska Street, Kyiv, Ukraine

Program

Morning Workshops

1. Vlad Styran - "Hidden" Features of the Tools We All Love | Video | Slides
2. Ihor Bliumental - Collision CORS | Video | Slides

Afternoon Talks

1. Serhiy Korolenko - The Strength of Ukrainian Users’ P@ssw0rds2017 | Video | Slides
2. Lidiia 'Alice' Skalytska - Security Checklist for Web Developers | Video | Slides
3. Volodymyr Ilibman - Close look at Nyetya investigation | Video | Slides
4. Viktor Zhora - Cyber and Geopolitics: Ukrainian factor | Video | Slides
5. Andriy Shalaenko - GO security tips | Video | Slides

Photo album by Serhiy Rekun

Chapter Kick-off Meeting

Date May 27, 2017 Location Smartworking "SAD", 3, Oleksandra Dovzhenka str., Kyiv, Ukraine, 03057

Program

1. Vlad Styran - Chapter Introduction and the 2017 Plan.
2. Ihor Bliumental - Is there life outside OWASP Top-10? Real-life bugs that didn't make the list (yet) | Video | Slides
3. Roman Rott - Ruby for Pentesters | Video | Slides
4. Taras Bobalo - Application Security automation with DevOps tools and Clouds | Video | Slides
5. Tim Karpinsky - OpSec! Not the PoopSec