This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "UW Bothell"
Dawnaitken (talk | contribs) |
|||
| (41 intermediate revisions by 2 users not shown) | |||
| Line 2: | Line 2: | ||
<br> | <br> | ||
| − | Information about | + | Information about upcoming meetings and events will appear in the "News" section below. |
<br> | <br> | ||
<br> | <br> | ||
| − | The chapter | + | The chapter leads are [mailto:cody.burkard@owasp.org Cody Burkard] |
| + | |||
| + | Our faculty advisor is [mailto:[email protected] Geetha Thamilarasu PhD]. | ||
<br> | <br> | ||
<br> | <br> | ||
| Line 16: | Line 18: | ||
== Local News == | == Local News == | ||
| − | '''Meeting Location''' The Bothell campus of the University of Washington is located near <br> the North end of Lake Washington, at the intersection of Highway 522 and Interstate 405. <br> | + | '''Meeting Location''' The Bothell campus of the University of Washington is located near <br> the North end of Lake Washington, at the intersection of Highway 522 and Interstate 405. <br> Multiple bus routes converge on campus, parking requires payment. <br> Everyone is welcome to join us at our chapter meetings. |
| − | < | + | |
| − | <br> | + | <h2>Upcoming Events:</h2> |
| + | |||
| + | <table border="1" cellpadding="15px" width="100%"><tr><td> | ||
| + | <h3>OWASP Summer of Code Sprint</h3> | ||
| + | |||
| + | <p> | ||
| + | The OWASP Summer of Code Sprint is seeking students. Apply by July 3rd if you would like to participate in a 2 month open source coding project. Students that successfully complete a project receive $1500 and coding experience. Check out this link for more info and to see what projects are available: https://www.owasp.org/index.php/Summer_Code_Sprint2015#OWASP_Summer_Code_Sprint_2015 | ||
| + | </p> | ||
| + | |||
| + | </td></tr></table> | ||
| + | |||
| + | <br> | ||
| + | |||
| + | <h2>Previous Events:</h2> | ||
| + | |||
| + | <br> | ||
| + | |||
| + | <table border="1" cellpadding="15px" width="100%"><tr><td> | ||
| + | <h3>Caliber Security Workshop</h3> | ||
| + | |||
| + | <p> | ||
| + | Caliber Security is visiting our campus to host a workshop on “Real world Security”, from 8-10pm in UW1-321. Practical penetration testing topics will be covered. Anyone interested is encouraged to attend. | ||
| + | </p> | ||
| + | |||
| + | </td></tr></table> | ||
| + | |||
| + | <br> | ||
| + | |||
| + | <table border="1" cellpadding="15px" width="100%"><tr><td> | ||
| + | <h3>Joint ACM, OWASP, UWB Gray Hats Team Citizen Four Moving Screening</h3> | ||
| − | <br> | + | <p> |
| + | Please join us May 14, 2015 from 3:30pm in Discovery Hall, room 162. CITIZENFOUR is a real life thriller, unfolding by the minute, giving audiences unprecedented access to filmmaker Laura Poitras and journalist Glenn Greenwald’s encounters with Edward Snowden in Hong Kong, as he hands over classified documents providing evidence of mass indiscriminate and illegal invasions of privacy by the National Security Agency (NSA). The student groups ACM, OWASP, and Gray Hats are co-hosting this event open to all UW students, faculty, staff, and guests. Come to hear about our organizations and become a new member, then stay to learn the details of Edward Snowden's battle against government surveillance! | ||
| + | </p> | ||
| + | |||
| + | <table> | ||
| + | <tr> | ||
| + | <td>[[File:Citizen-four-event.png]]</td> | ||
| + | </tr> | ||
| + | </table> | ||
| + | |||
| + | </td></tr></table> | ||
| + | |||
| + | <br> | ||
| + | |||
| + | <table border="1" cellpadding="15px" width="100%"><tr><td> | ||
| + | <h3>How to Start a Successful Cyber Security Business: 12 May, 2015</h3> | ||
| + | |||
| + | <p> | ||
| + | Please join us May 12, 2015 from 4-5 pm in Discovery Hall, room 162. OWASP will be hosting Rick Kam, founder and president of ID Experts. He will be visiting our campus to present his entrepreneurship experience in cyber security. He will talk about what happens when an entity experiences a cyber attack and breaches regulated data. He will also discuss how cyber risks are creating many new career opportunities in cyber security, privacy, and compliance. | ||
| + | </p> | ||
| + | |||
| + | <p> | ||
| + | Rick Kam brings 28 years of business experience including a long management career with IBM Corporation. Under his leadership, ID Experts has grown to become a leading provider of data breach protection, response, and identity theft protection services. Rick has also chaired the Public Health Information (PHI) Project, a working group made up of members from the ANSI IDSP that focus on fraud and risk mitigation associated with the Financial Services Roundatable, BITS, and Internet Security Alliance. The working group developed an industry leading white paper: “The Financial Impact of Breached Protected Health Information – A Business Case for Enhanced PHI Security.” | ||
| + | </p> | ||
| + | |||
| + | <p> | ||
| + | This event is an excellent opportunity to learn about cyber security entrepreneurship and the current cyber security landscape. Rick will also be available to answer questions at the end. This event is open to everyone. We hope to see you there! | ||
| + | </p> | ||
| + | |||
| + | <table> | ||
| + | <tr> | ||
| + | <td>[[File:Quote-rickcam.jpg]]</td> | ||
| + | </tr> | ||
| + | </table> | ||
| + | |||
| + | </td></tr></table> | ||
| + | |||
| + | <br> | ||
| + | |||
| + | <table border="1" cellpadding="15px" width="100%"><tr><td> | ||
| + | <h3>Application Security Testing in the Real World: 10 Apr, 2015</h3> | ||
| + | |||
| + | <p> | ||
| + | Mike de Libreo, accomplished developer and security specialist, and one | ||
| + | of the Seattle OWASP chapter leaders, presents an introduction to | ||
| + | application security testing in the business world and some of the most | ||
| + | useful tools. | ||
| + | </p> | ||
| + | |||
| + | <p> | ||
| + | '''Presentation Slides:''' [[File:Security_testing_real_world.pptx]] | ||
| + | </p> | ||
| + | |||
| + | <p> | ||
| + | '''Links to the Demo Vulnerabilities Investigated in the Lab:''' | ||
| + | </p> | ||
| + | |||
| + | <ul> | ||
| + | <li>[https://wpvulndb.com/vulnerabilities/7849 Gravity Forms - blind SQLi] | ||
| + | <li>[https://wpvulndb.com/vulnerabilities/7841 Wordpress SEO - blind SQLi] | ||
| + | <li>[http://k3dsec.blogspot.com/2015/03/wordpress-plugin-inboundio-marketing.html Inboundio-marketing - remote shell upload] | ||
| + | <li>[https://wpvulndb.com/vulnerabilities/7862 Ab-google-map-travel - persistent XSS] | ||
| + | </ul> | ||
| + | |||
| + | <p> | ||
| + | '''Bonus:''' the first twenty attendees are entered in a free raffle for | ||
| + | OWASP swag!!! | ||
| + | </p> | ||
| + | |||
| + | <p> | ||
| + | In this hands-on lab we will go over tools and techniques for | ||
| + | application security testing that will help testers and developers find | ||
| + | issues and exploit them. You will be guided through the lab using a | ||
| + | pre-configured workstation as an "attacker" and targeting a vulnerable | ||
| + | website (e.g. Wordpress with known vulnerable plugins). We will also | ||
| + | discuss techniques to improve your bug hunting besides the usual | ||
| + | "vulnerable web app" approach. | ||
| + | </p> | ||
| + | |||
| + | <p> | ||
| + | Please join us in the Network Security Lab, UW1-321, on April 10th from | ||
| + | 4pm to 5:30pm. Presented by OWASP and the Gray Hats team. | ||
| + | </p> | ||
| + | |||
| + | <table> | ||
| + | <tr> | ||
| + | <td>[[File:Application_Security_Testing_Event_(2)_4_10_2015.JPG]]</td> | ||
| + | <td>[[File:Application_Security_Testing_Event_(3)_4_10_2015.JPG]]</td> | ||
| + | </tr> | ||
| + | </table> | ||
| + | </td></tr></table> | ||
| + | |||
| + | <br> | ||
| + | |||
| + | <table border="1" cellpadding="15px" width="100%"><tr><td> | ||
| + | <h3>Tour Microsoft's Cybercrime Center (DCU): 1 Apr, 2015</h3> | ||
| + | |||
| + | <p> | ||
| + | Tour the innovative Cybercrime Center on the Microsoft Campus. Learn about the extent of cybercrime and what's being done to stop it. This 45 minute tour will be lead by the center's staff who have in depth knowledge of the current state of the art. | ||
| + | </p> | ||
| + | |||
| + | <p> | ||
| + | <ul> | ||
| + | <li>[http://news.microsoft.com/stories/cybercrime/index.html '''News Story'''] | ||
| + | </ul> | ||
| + | </p> | ||
| + | |||
| + | <table> | ||
| + | <tr> | ||
| + | <td>[[File:MS_Cybercime_Tour_(1)_4_1_2015.jpg]]</td> | ||
| + | <td>[[File:MS_Cybercime_Tour_(2)_4_1_2015.jpg]]</td> | ||
| + | </tr> | ||
| + | </table> | ||
| + | </td></tr></table> | ||
| + | |||
| + | <br> | ||
| + | |||
| + | <table border="1" cellpadding="15px" width="100%"><tr><td> | ||
| + | |||
| + | <h3>Hacking for Defense: 27 Feb, 2015</h3> | ||
| + | |||
| + | <p> | ||
| + | '''Presentation Audio File:''' [[Image:OWASP_UWB_web-hacking-for-defense_2015-02-27.mp3|Presentation Audio MP3]] | ||
| + | </p> | ||
| + | |||
| + | <p> | ||
| + | '''Presentation Slides:''' [[Image:OWASP-UWB_hacking-for-defense-2015-02-27_slides.pdf|Presentation Slides PDF]] | ||
| + | </p> | ||
| + | |||
| + | <p> | ||
| + | The next chapter event, in cooperation with the UWB Gray Hats team, is 4pm - 5:30pm Friday, February 27. | ||
| + | </p> | ||
| + | |||
| + | <p> | ||
| + | Ever wondered if your website was secure? Want to know how to test it? Join us as David L. Morse presents an introduction to stress-testing your website! | ||
| + | </p> | ||
| + | |||
| + | <p> | ||
| + | <ul> | ||
| + | <li>We'll play with hacking tools specifically designed to identify the most commonly attacked vulnerabilities - using the results to "harden" our website. | ||
| + | <li>We'll have a brief overview and then hands-on excercises. No experience needed! | ||
| + | <li>We'll meet on campus in building UW1, Room 321 - the network security lab. | ||
| + | </ul> | ||
| + | </p> | ||
| + | |||
| + | <table> | ||
| + | <tr> | ||
| + | <td>[[File:OWASP-UWB_web-hacking-for-defense_2015-02-27_audiance2.jpg]]</td> | ||
| + | <td>[[Image:OWASP-UWB_web-hacking-for-defense_2015-02-27_audiance.jpg]]</td> | ||
| + | </tr> | ||
| + | </table> | ||
| + | </td></tr></table> | ||
| + | |||
| + | <br> | ||
| + | |||
| + | <!--<table border="1" cellpadding="15px"><tr><td> | ||
| + | <h3>The next chapter business meeting, in cooperation with the ACM Chapter, is Friday, January 16.</h3> | ||
| + | <p> | ||
| + | We'll meet on campus, in the Cascadia building, in the commons next to Room 310 (CC1 - The building closer to UW). | ||
| + | </p> | ||
| + | </td></tr></table> | ||
| + | |||
| + | <br> | ||
| + | |||
| + | <table border="1" cellpadding="15px"><tr><td> | ||
| + | <h3> The next chapter business meeting is Tuesday, Dec. 2nd in UW1, Room 321 from 6pm to 6:30 PST.</h3> | ||
| + | </td></tr></table> | ||
| + | |||
| + | <br> | ||
| − | < | + | <table border="1" cellpadding="15px"><tr><td> |
| − | < | + | <h3>Industry, Government & Academic Panel: “Careers in Cybersecurity”</h3> |
| − | < | + | <p> |
| + | Thursday, November 20, 2014, 7:30‐9:00 pm at DH 061, | ||
| + | presented by UW Bothell School of Science, Technology, Engineering and Mathematics/Computing and Software Systems Speaker Series. | ||
| + | </p> | ||
| + | </td></tr></table>--> | ||
[[Category:OWASP Chapter]] | [[Category:OWASP Chapter]] | ||
[[Category:OWASP Student Chapter]] | [[Category:OWASP Student Chapter]] | ||
Latest revision as of 17:02, 22 April 2016
- 1 OWASP UW Bothell
- 2 Participation
- 3 Sponsorship/Membership
- 4 Local News
- 5 Upcoming Events:
- 6 Previous Events:
- 6.1 Caliber Security Workshop
- 6.2 Joint ACM, OWASP, UWB Gray Hats Team Citizen Four Moving Screening
- 6.3 How to Start a Successful Cyber Security Business: 12 May, 2015
- 6.4 Application Security Testing in the Real World: 10 Apr, 2015
- 6.5 Tour Microsoft's Cybercrime Center (DCU): 1 Apr, 2015
- 6.6 Hacking for Defense: 27 Feb, 2015
OWASP UW Bothell
Welcome to the UW Bothell chapter homepage. The Bothell campus of the University of Washington is located just North of Seattle. Students in the Master of Science in Cyber Security Engineering (MS CSE) program have chartered this OWASP Chapter to provide an educational resource for the community. We emphasize collaboration with other technology and security organizations.
Information about upcoming meetings and events will appear in the "News" section below.
The chapter leads are Cody Burkard
Our faculty advisor is Geetha Thamilarasu PhD.
For more information about UW Bothell and the University of Washington system:
http://www.uwb.edu/cybersecurity
Participation
OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.
Sponsorship/Membership
to this chapter or become a local chapter supporter.
Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? 
Local News
Meeting Location The Bothell campus of the University of Washington is located near
the North end of Lake Washington, at the intersection of Highway 522 and Interstate 405.
Multiple bus routes converge on campus, parking requires payment.
Everyone is welcome to join us at our chapter meetings.
Upcoming Events:
OWASP Summer of Code SprintThe OWASP Summer of Code Sprint is seeking students. Apply by July 3rd if you would like to participate in a 2 month open source coding project. Students that successfully complete a project receive $1500 and coding experience. Check out this link for more info and to see what projects are available: https://www.owasp.org/index.php/Summer_Code_Sprint2015#OWASP_Summer_Code_Sprint_2015 |
Previous Events:
Caliber Security WorkshopCaliber Security is visiting our campus to host a workshop on “Real world Security”, from 8-10pm in UW1-321. Practical penetration testing topics will be covered. Anyone interested is encouraged to attend. |
Joint ACM, OWASP, UWB Gray Hats Team Citizen Four Moving ScreeningPlease join us May 14, 2015 from 3:30pm in Discovery Hall, room 162. CITIZENFOUR is a real life thriller, unfolding by the minute, giving audiences unprecedented access to filmmaker Laura Poitras and journalist Glenn Greenwald’s encounters with Edward Snowden in Hong Kong, as he hands over classified documents providing evidence of mass indiscriminate and illegal invasions of privacy by the National Security Agency (NSA). The student groups ACM, OWASP, and Gray Hats are co-hosting this event open to all UW students, faculty, staff, and guests. Come to hear about our organizations and become a new member, then stay to learn the details of Edward Snowden's battle against government surveillance!
|
How to Start a Successful Cyber Security Business: 12 May, 2015Please join us May 12, 2015 from 4-5 pm in Discovery Hall, room 162. OWASP will be hosting Rick Kam, founder and president of ID Experts. He will be visiting our campus to present his entrepreneurship experience in cyber security. He will talk about what happens when an entity experiences a cyber attack and breaches regulated data. He will also discuss how cyber risks are creating many new career opportunities in cyber security, privacy, and compliance. Rick Kam brings 28 years of business experience including a long management career with IBM Corporation. Under his leadership, ID Experts has grown to become a leading provider of data breach protection, response, and identity theft protection services. Rick has also chaired the Public Health Information (PHI) Project, a working group made up of members from the ANSI IDSP that focus on fraud and risk mitigation associated with the Financial Services Roundatable, BITS, and Internet Security Alliance. The working group developed an industry leading white paper: “The Financial Impact of Breached Protected Health Information – A Business Case for Enhanced PHI Security.” This event is an excellent opportunity to learn about cyber security entrepreneurship and the current cyber security landscape. Rick will also be available to answer questions at the end. This event is open to everyone. We hope to see you there!
|
Application Security Testing in the Real World: 10 Apr, 2015Mike de Libreo, accomplished developer and security specialist, and one of the Seattle OWASP chapter leaders, presents an introduction to application security testing in the business world and some of the most useful tools. Presentation Slides: File:Security testing real world.pptx Links to the Demo Vulnerabilities Investigated in the Lab:
Bonus: the first twenty attendees are entered in a free raffle for OWASP swag!!! In this hands-on lab we will go over tools and techniques for application security testing that will help testers and developers find issues and exploit them. You will be guided through the lab using a pre-configured workstation as an "attacker" and targeting a vulnerable website (e.g. Wordpress with known vulnerable plugins). We will also discuss techniques to improve your bug hunting besides the usual "vulnerable web app" approach. Please join us in the Network Security Lab, UW1-321, on April 10th from 4pm to 5:30pm. Presented by OWASP and the Gray Hats team.
|
_4_10_2015.JPG)
_4_10_2015.JPG)
Tour Microsoft's Cybercrime Center (DCU): 1 Apr, 2015Tour the innovative Cybercrime Center on the Microsoft Campus. Learn about the extent of cybercrime and what's being done to stop it. This 45 minute tour will be lead by the center's staff who have in depth knowledge of the current state of the art.
|
_4_1_2015.jpg)
_4_1_2015.jpg)
Hacking for Defense: 27 Feb, 2015Presentation Audio File: Presentation Slides: File:OWASP-UWB hacking-for-defense-2015-02-27 slides.pdf The next chapter event, in cooperation with the UWB Gray Hats team, is 4pm - 5:30pm Friday, February 27. Ever wondered if your website was secure? Want to know how to test it? Join us as David L. Morse presents an introduction to stress-testing your website!
|
