Difference between revisions of "HackDub 2012 Day 2"

Latest revision as of 09:25, 25 July 2012

ACTIVITY
SECURITY WORKSHOPS
Description
During the entire day, attendees will be able to participate in interactive workshops delivered by experts in the field on how to develop, review and test applications securely. IMPORTANT: Attendees need to bring their own laptops in order to participate during the event! Minimum Hardware Requirements are as follows: - Windows/Macintosh/Linux computer with Java installed - 1 Ghz or higher processor; - 1 GB RAM minimum; - Keyboard & Mouse; - 1024x768 or higher display; and, - Wireless Network connectivity
Time	Venue
8th July 2012	Google Ireland Engineering offices - 1 Upper Grand Canal Street Placemark on this map : http://goo.gl/ZGASA

Schedule
Time	Activity	Speaker	Details
09:30 - 10:00	Registration & Welcome	OWASP+GTUG Team
10:00 - 12:00	Ruby on Rails Secure Development (Slides)	Thomas Pomfret, CTO MintDigital	Rails makes it very easy to rapidly develop web applications, but doesn’t always make it so simple to deploy or secure them. Thomas is going to cover many common web security holes and show the best practices to secure them in your rails application. We'll look at them in abstract before getting hands on and doing it for real. Learnt through multiple high profile projects and penetration tests, Thomas will be presenting these in a practical 'real-world' way.
12:00 - 13:00	Lunch Break
13:00 - 14:30	Facebook Secure Coding Practices (Slides)	Ryan Patterson, Facebook Engineer	The talk is for programmers who want to write secure code. We'll go over 12 examples of security vulnerabilities and play spot-the-vulnerability with real examples that have been found in Facebook's source code.
14:30 - 14:45	Coffee Break
14:45 - 16:45	OWASP Shepherd Project	Mark Denihan, Juan Galiana Lara	A walk through of the OWASP Shepherd project showing how to solve the lab exercises and learning on how identify critical vulnerabilities in web applications.
16:45 - 17:00	Wrap Up & Closure

@@ Line 5: / Line 5: @@
 | align="center" height="30" style="background:#CCCCEE;" colspan="2"       | '''ACTIVITY'''
 |-
-| align="center" style="background:#EEEEEE;" colspan="2"                   | '''SECURITY WORKSHOPS''
+| align="center" style="background:#EEEEEE;" colspan="2"                   | '''SECURITY WORKSHOPS'''
 |-
 | valign="center" bgcolor="#CCCCEE" align="center" colspan="2"             | '''Description'''
@@ Line 11: / Line 11: @@
 | valign="left" height="80" bgcolor="#EEEEEE" align="left" colspan="2" |
-*During the entire day, attendees will be able to learn in an interactive way how to develop, review and test applications  be able to experience hands-on
+*During the entire day, attendees will be able to participate in interactive workshops delivered by experts in the field on how to develop, review and test applications securely.
 * IMPORTANT: Attendees need to bring their own laptops in order to participate during the event!
@@ Line 26: / Line 26: @@
 | style="width:80%" valign="middle"  bgcolor="#CCCCEE" align="center" colspan="0" | '''Venue'''
 |-
-| valign="middle" bgcolor="#EEEEEE" align="center" | 7th July 2012
+| valign="middle" bgcolor="#EEEEEE" align="center" | 8th July 2012
 | valign="middle" bgcolor="#EEEEEE" align="left" | Google Ireland Engineering offices - 1 Upper Grand Canal Street
 Placemark on this map : http://goo.gl/ZGASA
@@ Line 41: / Line 41: @@
 | style="width:40%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" | '''Details'''
 |-
-| style="width:10%" valign="middle" height="30" bgcolor="#CCEEEE" align="center" colspan="0" | 09:00 - 09:30
+| style="width:10%" valign="middle" height="30" bgcolor="#CCEEEE" align="center" colspan="0" | 09:30 - 10:00
 | style="width:27%" valign="middle" height="30" bgcolor="#CCEEEE" align="center" colspan="0" | Registration & Welcome
 | style="width:23%" valign="middle" height="30" bgcolor="#CCEEEE" align="center" colspan="0" | OWASP+GTUG Team
 | style="width:40%" valign="middle" height="30" bgcolor="#CCEEEE" align="center" colspan="0" |
-|-
-| style="width:10%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | 09:30 - 10:00
-| style="width:27%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | Introduction to Shepherd Project
-| style="width:23%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | Mark Denihan & Juan Galiana Lara
-| style="width:40%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" |
 |-
 | style="width:10%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | 10:00 - 12:00
-| style="width:27%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | Round 1
+| style="width:27%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | Ruby on Rails Secure Development ([https://www.owasp.org/images/8/8c/Hackdub_ruby.pdf Slides])
-| style="width:23%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" |
+| style="width:23%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | Thomas Pomfret, CTO MintDigital
-| style="width:40%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" |
+| style="width:40%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | Rails makes it very easy to rapidly develop web applications, but doesn’t always make it so simple to deploy or secure them. Thomas is going to cover many common web security holes and show the best practices to secure them in your rails application. We'll look at them in abstract before getting hands on and doing it for real. Learnt through multiple high profile projects and penetration tests, Thomas will be presenting these in a practical 'real-world' way.
 |-
-| style="width:10%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" | 12:00 - 12:45
+| style="width:10%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" | 12:00 - 13:00
 | style="width:27%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" | Lunch Break
 | style="width:23%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" |
 | style="width:40%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" |
 |-
-| style="width:10%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | 12:45 - 13:00
+| style="width:10%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | 13:00 - 14:30
-| style="width:27%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | Hints & Tips for Round 2
+| style="width:27%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | Facebook Secure Coding Practices ([https://www.owasp.org/images/b/ba/Fb_secure_dev.pdf Slides])
-| style="width:23%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | Mark Denihan & Juan Galiana Lara
+| style="width:23%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | Ryan Patterson, Facebook Engineer
-| style="width:40%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" |
+| style="width:40%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | The talk is for programmers who want to write secure code. We'll go over 12 examples of security vulnerabilities and play spot-the-vulnerability with real examples that have been found in Facebook's source code.
 |-
+| style="width:10%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" | 14:30 - 14:45
+| style="width:27%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" | Coffee Break
+| style="width:23%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" |
+| style="width:40%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" |
 |-
-| style="width:10%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | 13:00 - 16:45
+| style="width:10%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | 14:45 - 16:45
-| style="width:27%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | Round 2
+| style="width:27%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | OWASP Shepherd Project
-| style="width:23%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" |
+| style="width:23%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | Mark Denihan, Juan Galiana Lara
-| style="width:40%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" |
+| style="width:40%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | A walk through of the OWASP Shepherd project showing how to solve the lab exercises and learning on how identify critical vulnerabilities in web applications.
 |-
-|-
+| style="width:10%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" | 16:45 - 17:00
-| style="width:10%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | 16:45 - 17:00
+| style="width:27%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" | Wrap Up & Closure
-| style="width:27%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | Winners Announcement
+| style="width:23%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" |
-| style="width:23%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" | OWASP + GTUG Team
+| style="width:40%" valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="0" |
-| style="width:40%" valign="middle" height="30" bgcolor="#EEEEEE" align="center" colspan="0" |
 |}

Difference between revisions of "HackDub 2012 Day 2"

Latest revision as of 09:25, 25 July 2012

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools