This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Manchester"

From OWASP
Jump to: navigation, search
(Removed Sharka ;()
 
(177 intermediate revisions by 10 users not shown)
Line 1: Line 1:
 
{{Chapter Template|chaptername=Manchester|extra=
 
{{Chapter Template|chaptername=Manchester|extra=
  
This is a new chapter, having grown out of the successful [[Leeds_UK]] chapter.
+
This [[UK]] chapter was started in 2011, having grown out of the successful [[Leeds_UK]] chapter.  
  
 +
You can follow [https://twitter.com/OwaspMcr @OwaspMcr] on Twitter and view some of the chapter meeting videos on [https://www.youtube.com/channel/UCAX1Mg9r4KeLoJq6bHxOP0Q YouTube].
 +
 +
When participating our events, please follow our [https://www.owasp.org/index.php/OWASPManchester_CodeOfConduct | code of conduct]
 
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-Manchester|emailarchives=http://lists.owasp.org/pipermail/owasp-Manchester}}
 
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-Manchester|emailarchives=http://lists.owasp.org/pipermail/owasp-Manchester}}
  
==== Next Meeting ====
+
= Next Meeting =
 +
'''TBC'''
 +
 
 +
The date for our next meeting will be announced shortly.
 +
 
 +
If you have any recommendations for speakers, venues or potential sponsors, please contact the Chapter Leaders.
  
'''Date:''' Wednesday 24th August in Manchester
+
= Code of conduct =
 +
OWASP Manchester meetings and events are an inclusive environment where all people should feel safe and respected. We welcome diversity in age, race, ethnicity, national origin, range of abilities, sexual orientation, gender identity, financial means, education, and political perspective.
  
'''Location:''' KPMG Offices Manchester
+
OWASP Manchester will not tolerate any form of violence, harassment, hate speech or trolling either off or online, or any overly drunken, intimidating or heckling behaviour.
  
'''Registration:''' This event is now '''FULLY BOOKED''', but you can add yourself to the waiting list here: '''[http://www.eventbrite.com/event/2035414981?ref=elink Eventbrite]''' in case anyone cancels.
+
Please respect the presenters, don’t talk amongst yourselves during their presentations and ensure your mobile phones are muted or switched off.
  
'''Schedule: 18:00 for 18:20 start'''
+
We want you to have fun, in a safe and respectful environment.
  
'''18:20-18:30'''
+
If you have any issues or concerns relating to the code of conduct please contact one or the Chapter Leads either in person, though the Meetup page or via email.
  
OWASP Chapter introduction. OWASP values and membership. Chapter information.
+
Chapter Leads:
 +
*Ben Fountain
 +
*Daniel Pollard
 +
*Joe Carter
 +
*Nikola Milosevic
 +
*Saskia Coplans
 +
*Wes Parsons
 +
(email addresses are on the OWASP website [https://www.owasp.org/index.php/Manchester]).
  
OWASP Manchester board member
+
As this is a private event we withhold the right to remove and ultimately ban anyone who violates this code of conduct and will report any incidents to the appropriate authorities if necessary.
  
'''Talk: SSL: Paved with Good Intentions'''
+
'''Polite note to Vendors/Recruiters/Internal Recruiters/Business Development people'''
  
At first glance, SSL seems very complicated to add to your site.  
+
Vendors and Recruiters are welcome at OWASP Manchester, however we ask that you remember this is a user group, not a networking event, and tapping people up for jobs or business unprompted is not encouraged.
  
Once you become a little more knowledgeable you know that it's a simple matter of getting a certificate from a trusted CA and installing it.
+
= Past Events  =
  
Unfortunately you were right the first time, and it is actually very complicated to do correctly.
+
'''2019 Dates'''
  
This talk aims to explain how the various parts of SSL fit together to provide users with decent security, showing the problems components like OCSP and certificates
+
[[Manchester Chapter 2019|28th May - Simon Bennetts (OWASP ZAP) and Gerald Benischke (XML is Evil)]]
solve.
 
  
As well as explaining the evolution of SSL over time, it will cover enhancements that are just reaching deployment such as Server Name Indication and OCSP stapling.
+
'''2018 Dates'''
  
Finally, it will also highlight various ways that everyone from SSL implementers, system
+
[[13th November]]
administrators, browser developers to users can manage to undo all
 
this hard work and make it insecure anyway.
 
  
'''Speaker: Richard Moore, CTO [http://www.westpoint.ltd.uk/ Westpoint Ltd ]'''
+
[[4th September]]
  
Richard is CTO of Westpoint Ltd, a security testing company based in
+
[[17th July]]
Manchester. He has been working in the security industry for many
 
years providing services to a wide range of clients including
 
multi-nationals and banks.
 
  
Richard has extensive experience in SSL
+
[[3rd May]]
from both the point of view of a software developer as one of the
 
maintainers of the SSL support in Nokia's Qt library and KDE, and also
 
from a security testing perspective.
 
  
 +
'''2017 Dates'''
  
'''Talk: Forensic Readiness – Give your investigators a fighting chance'''
+
[[2017 04 26 Manchester|24th April]]
  
Investigators are often faced with poorly configured systems which thwart the investigative process.
+
'''2016 Dates'''
This leads commonly leads to incident response reports with fragmented timelines of attack and
 
leaves risk managers having to make difficult decisions based on incomplete information.
 
  
Companies that consider Forensic Readiness put their investigators in a much stronger position and
+
[[2016_11_30_Manchester|30th November]]
can expect considerably more accurate outcomes from a forensic investigation.
 
  
This talk looks at the same web application attack, carried out on systems with differing audit
+
[[2016_06_16_Manchester|16th June]]
controls. The first system has ‘out of the box’ logging and the second has had logging improved
 
through a Forensic Readiness process carried out before the attack.
 
  
We approach the machines as an Incident Response Specialist would and compare the evidence
+
[[2016_03_17_Manchester|17th March]]
stores and the ability of the investigators to make accurate conclusions based on the evidence
 
available. We will look at the contrasting final reports which are produced with the differing levels
 
of forensic evidence, highlighting the decisions that have to be made based on the varying level of
 
detail provided in the reports.
 
  
Someone for whom forensic investigation of web application exploits is a new topic will gain an
 
understanding of some of the forensic techniques possible. Whilst attendees who already have some
 
forensic investigation knowledge will understand how forensic readiness can have a massive effect
 
on the outcome of investigations.
 
  
'''Speaker: Ryan Jones, [https://www.trustwave.com/spiderLabs.php SpiderLabs] Incident Response Team leader'''
+
'''2015 Dates'''
  
Ryan Jones currently leads the SpiderLabs Incident Response Team in EMEA. The team commonly
+
[[2015_11_17_Manchester|12th November]]
manages data compromises related to cardholder data but are also regularly involved in other
 
projects such as ATM compromises and data breaches caused by internal staff. The Incident
 
Response team also carry out proactive engagements to ensure that customers have an effective
 
incident response plan; drawing upon extensive knowledge of how it goes wrong in real data
 
security breaches to improve companies’ approach to Incident Response.
 
  
During Ryan’s incident response career Ryan has worked for both UK National Law enforcement
+
[[2015_06_17_Manchester|17th June]]
and private companies. He has been involved with both criminal and corporate investigations with
 
scope ranging from a single mobile telephone to multinational networks. For the past 4 years,
 
Ryan has been a corporate first responder involved with a wide variety of businesses from small
 
companies to multinationals during times when they have been struggling to react to a rapidly
 
changing data compromise situation. Ryan firmly believes that a consultative approach coupled with
 
the appropriate technical knowledge is key to successful incident response engagements.
 
  
Ryan graduated from the University of Kent with a First Class BSc in Computer Science. He is also a
+
[[2015_02_17_Manchester|17th February]]
PCI QSA. In his spare time he can be found skydiving at various dropzones around the country.
 
  
 +
'''2014 Dates'''
  
1 more talk TBA: Please get in touch if you would like to speak at this event.
+
[[2014_09_08_Manchester|8th September]]
  
Everyone is welcome to join us at our chapter meetings.
+
[[2014_05_13_Manchester|13th May]]
  
==== Upcoming Events  ====
+
[[2014_02_27_Manchester|27th February]]
  
August 24th 2011
+
'''2013 Dates'''
  
November 16th 2011
+
[[2013_04_30_Manchester|30th April]]
  
Please get in touch if you would like to speak at a Manchester event - we would be delighted to hear from you.
+
'''2012 Dates'''
  
Everyone is welcome to join us at our chapter meetings.
+
[[2012_09_11_Manchester|11th September]]
  
==== Past Events  ====
+
[[2012_05_30_Manchester|30th May]]
  
Although we have yet to have our first meeting as OWASP Manchester, there have already been 2 events held in Manchester as part of the [[Leeds_UK]] chapter:
+
[[2012_02_01_Manchester|1st February]]
  
 
'''2011 Dates'''
 
'''2011 Dates'''
  
[https://www.owasp.org/index.php/Leeds_UK 22nd June]
+
[[2011_11_16_Manchester|16th November]]
 +
 
 +
[[2011_08_24_Manchester|24th August]] As part of the Leeds Chapter
 +
 
 +
[https://www.owasp.org/index.php/Leeds_UK 22nd June] As part of the Leeds Chapter
  
 
'''2010 Dates'''
 
'''2010 Dates'''
  
[[8th_December_Leeds|8th December]]
+
[[8th_December_Leeds|8th December]] As part of the Leeds Chapter
  
==== Chapter Leaders  ====
+
= Chapter Leaders  =
  
 
The chapter leaders are:
 
The chapter leaders are:
  
* [[User:Simon Bennetts|Simon Bennetts]]
+
* Ben Fountain
* [[User:Simon Ward|Simon Ward]]
+
* [[User:Nikola Milosevic|Nikola Milosevic]]
* [[User:Andy_Hornsby-Jones|Andy Hornsby-Jones]]
+
* [[User:Daniel Pollard|Daniel Pollard]]
  
We are actively seeking more chapter leaders - please get in touch if you would like to become one!
+
Chapter Board Members are:
 +
* Joe Carter
 +
* [mailto:[email protected] Saskia Coplans]
 +
* [mailto:[email protected] Wes Parsons]
  
 +
= Sponsorship  =
  
==== Local Organisations  ====
+
We are looking for organizations to sponsor the Manchester chapter.
  
Other related organisations in the Manchester area:
+
You can sponsor the chapter for one year at the following levels:
 +
* £1000 Silver
 +
* £2000 Gold
 +
* £3000 Platinum
 +
 
 +
You can also sponsor a meeting by hosting the event or donating £200.
 +
 
 +
If you are interested in sponsoring the chapter then please get in touch with one of the chapter leaders.
 +
 
 +
 
 +
= Local Organizations  =
 +
 
 +
Other related organizations in the Manchester area:
  
 
* [http://manchester.bcs.org/ BCS Manchester]
 
* [http://manchester.bcs.org/ BCS Manchester]
Line 142: Line 146:
 
* [http://libreplanet.org/wiki/Manchester Manchester Free Software]
 
* [http://libreplanet.org/wiki/Manchester Manchester Free Software]
 
* [http://www.manlug.org/ Manchester Linux Users Group]
 
* [http://www.manlug.org/ Manchester Linux Users Group]
* [http://nwdc.org.uk/ North West Digital Communities (NWDC)]
+
* [https://northernuksecuritygroup.wordpress.com/ Northern UK Security Group]
 +
* [http://www.meetup.com/North-West-Tester-Gathering North West Tester Gathering]
 +
* [http://www.bsidesmcr.org.uk/ Security BSides Manchester]
  
Please get in touch with one of the chapter leaders to get your organisation listed here.
+
Please get in touch with one of the chapter leaders to get your organization listed here.
  
 
And feel free to use the [https://lists.owasp.org/mailman/listinfo/owasp-Manchester Manchester mailing list] to publicise related events.
 
And feel free to use the [https://lists.owasp.org/mailman/listinfo/owasp-Manchester Manchester mailing list] to publicise related events.
  
__NOTOC__ <headertabs/>
 
  
 +
__NOTOC__ <headertabs></headertabs>
 +
 +
== Chapter Sponsors ==
 +
Thank you to our Silver Chapter sponsor: 
 +
[[File:AutoTrader.jpg|center|thumb|249x249px]]
 
[[Category:OWASP Chapter]]
 
[[Category:OWASP Chapter]]
 
[[Category:United Kingdom]]
 
[[Category:United Kingdom]]

Latest revision as of 07:51, 4 June 2019

OWASP Manchester

Welcome to the Manchester chapter homepage. This UK chapter was started in 2011, having grown out of the successful Leeds_UK chapter.

You can follow @OwaspMcr on Twitter and view some of the chapter meeting videos on YouTube.

When participating our events, please follow our | code of conduct


Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


TBC

The date for our next meeting will be announced shortly.

If you have any recommendations for speakers, venues or potential sponsors, please contact the Chapter Leaders.

OWASP Manchester meetings and events are an inclusive environment where all people should feel safe and respected. We welcome diversity in age, race, ethnicity, national origin, range of abilities, sexual orientation, gender identity, financial means, education, and political perspective.

OWASP Manchester will not tolerate any form of violence, harassment, hate speech or trolling either off or online, or any overly drunken, intimidating or heckling behaviour.

Please respect the presenters, don’t talk amongst yourselves during their presentations and ensure your mobile phones are muted or switched off.

We want you to have fun, in a safe and respectful environment.

If you have any issues or concerns relating to the code of conduct please contact one or the Chapter Leads either in person, though the Meetup page or via email.

Chapter Leads:

  • Ben Fountain
  • Daniel Pollard
  • Joe Carter
  • Nikola Milosevic
  • Saskia Coplans
  • Wes Parsons

(email addresses are on the OWASP website [1]).

As this is a private event we withhold the right to remove and ultimately ban anyone who violates this code of conduct and will report any incidents to the appropriate authorities if necessary.

Polite note to Vendors/Recruiters/Internal Recruiters/Business Development people

Vendors and Recruiters are welcome at OWASP Manchester, however we ask that you remember this is a user group, not a networking event, and tapping people up for jobs or business unprompted is not encouraged.

2019 Dates

28th May - Simon Bennetts (OWASP ZAP) and Gerald Benischke (XML is Evil)

2018 Dates

13th November

4th September

17th July

3rd May

2017 Dates

24th April

2016 Dates

30th November

16th June

17th March


2015 Dates

12th November

17th June

17th February

2014 Dates

8th September

13th May

27th February

2013 Dates

30th April

2012 Dates

11th September

30th May

1st February

2011 Dates

16th November

24th August As part of the Leeds Chapter

22nd June As part of the Leeds Chapter

2010 Dates

8th December As part of the Leeds Chapter

The chapter leaders are:

Chapter Board Members are:

We are looking for organizations to sponsor the Manchester chapter.

You can sponsor the chapter for one year at the following levels:

  • £1000 Silver
  • £2000 Gold
  • £3000 Platinum

You can also sponsor a meeting by hosting the event or donating £200.

If you are interested in sponsoring the chapter then please get in touch with one of the chapter leaders.


Other related organizations in the Manchester area:

Please get in touch with one of the chapter leaders to get your organization listed here.

And feel free to use the Manchester mailing list to publicise related events.


Chapter Sponsors

Thank you to our Silver Chapter sponsor:

AutoTrader.jpg