This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Projects Summit 2013/Working Sessions/0013"

From OWASP
Jump to: navigation, search
Line 66: Line 66:
 
|-
 
|-
  
|summit_session_deliverable_name1 =  
+
|summit_session_deliverable_name1 = To have authorization to attack/test 'targets'.
  
 
|summit_session_deliverable_name2 =  
 
|summit_session_deliverable_name2 =  

Revision as of 23:13, 7 October 2013

Global Summit 2013 Home Page
Global Summit 2013 Tracks

Working Session.jpg Mobile Security Project
Please see/use the 'discussion' page for more details about this Working Session
Working Sessions Operational Rules - Please see here the general frame of rules.
WORKING SESSION IDENTIFICATION
Short Work Session Description Collaboration, Learning and Sharing Knowledge are the objectives for Bug Bounty programs. It offers a 'life hacking' event within a control environment.
Related Projects (if any)


Email Contacts & Roles Chair
Dinis Cruz

 Operational Manager
 Mailing list
Google Groups: owasp-project-summit-2013
WORKING SESSION SPECIFICS
Objectives
  1. Collaboration, Learning and Sharing Knowledge - By creating an environment where attendees can get together in an 'live hacking' event.
  2. In order to keep things legal and focused, the 'targets' are going to be companies that have public "Bug Bounties' programs. These will be companies that accept adn want to be targets for such ethical hacking activities.
  3. Each participant will be asked to have 'common sense' and to respect a couple 'soft' rules of engagement.
  4. All participants are encouraged to share their ideas, techniques and discoveries.
  5. In addition to the 'Bug Bounty' targets, we will also add a couple Open Source apps so that the 'builders' also have the opportunity to fix the source code and the 'breakers' can do source-code analysis.

Venue/Date&Time/Model Venue/Room
AppSec USA 2013: Times Square, New York City 		Date & Time
Monday and Tuesday: all day


Discussion Model
participants and attendees

WORKING SESSION OPERATIONAL RESOURCES
Projector, whiteboards, markers, Internet connectivity, power

WORKING SESSION ADDITIONAL DETAILS

NEW-PROJECTS-BANNER2.jpg

Chair: Dinis Cruz

Dinis Cruz is a Security Consultant based in London (UK) and specialized in: ASP.NET/J2EE Application Security, Application Security audits and .NET Security Curriculum Development.

For the past years Dinis has focused on the field of Static Source Code analysis, from May 2007 to Dec 2009 he worked as a independent consultant for Ounce Labs (bought by IBM in July 2009) where during active security engagements using Ounce's technology he developed the Open Source codebase which now is the foundation of the OWASP O2 Platform.

At OWASP, Dinis is the leader of the OWASP O2 Platform project

Operational Manager:

WORKING SESSION OUTCOMES / DELIVERABLES
Proposed by Working Group 'Delivered by Working Group

To have authorization to attack/test 'targets'.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

Working Session Participants

(Add you name by clicking "edit" on the tab on the upper left side of this page)

WORKING SESSION PARTICIPANTS
Name Company Notes & reason for participating, issues to be discussed/addressed

{{{summit_session_attendee_company21}}}
 {{{summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed21}}}




























































Retrieved from "https://wiki.owasp.org/index.php?title=Projects_Summit_2013/Working_Sessions/0013&oldid=159904"