Difference between revisions of "Front Range OWASP Conference 2016/Schedule"

From OWASP
Jump to: navigation, search
(Created page with "==Agenda and Presentations: 18 February 2016== The agenda follows the successful OWASP conference multi track format, with opening keynotes and presentations in the main room...")
 
m (Changing workshop)
 
(25 intermediate revisions by one other user not shown)
Line 1: Line 1:
==Agenda and Presentations: 18 February 2016==
+
__NOTOC__
  
 
The agenda follows the successful OWASP conference multi track format, with opening keynotes and presentations in the main room & broadcast throughout the facility, split tracks in the middle of the day, and closing panel discussions at the end of the day.
 
The agenda follows the successful OWASP conference multi track format, with opening keynotes and presentations in the main room & broadcast throughout the facility, split tracks in the middle of the day, and closing panel discussions at the end of the day.
 +
'''NOTE: schedule is subject to change.'''
  
 
{| style="width:86%" border="0" align="center"
 
{| style="width:86%" border="0" align="center"
 
  ! colspan="4" align="center" style="background:#4058A0; color:white" | Thursday, February 18th, 2016
 
  ! colspan="4" align="center" style="background:#4058A0; color:white" | Thursday, February 18th, 2016
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 07:45-08:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Registration and Continental Breakfast in the lobby
+
  | style="width:10%; background:#7B8ABD" | 7:45 - 8:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Registration and Continental Breakfast in the lobby
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 08:30-08:45 || colspan="3" style="width:80%; background:#F2F2F2" align="center" | Welcome to SnowFROC 2016 Conference
+
  | style="width:10%; background:#7B8ABD" | 8:30 - 8:45 || colspan="3" style="width:80%; background:#F2F2F2" align="center" | Welcome to SnowFROC 2016 Conference
  
 
''OWASP Denver and OWASP Boulder Chapter Leaders''
 
''OWASP Denver and OWASP Boulder Chapter Leaders''
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 08:45-09:10 || colspan="3" style="width:80%; background:#F2F2F2" align="center" |  
+
  | style="width:10%; background:#7B8ABD" | 8:45 - 9:00 || colspan="3" style="width:80%; background:#F2F2F2" align="center" |  
 
'''State of OWASP'''  
 
'''State of OWASP'''  
  
 
''Tom Brennan''
 
''Tom Brennan''
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 09:10-10:10 || colspan="3" style="width:80%; background:#F2F2F2" align="center" | '''Keynote: Red Dawn for AppSec - Where are the Wolverines?'''  
+
  | style="width:10%; background:#7B8ABD" | 9:00 - 10:00 || colspan="3" style="width:80%; background:#F2F2F2" align="center" | '''Keynote: 15 Years of Web Security - The Rebellious Teenage Years'''  
  
 
''[https://www.whitehatsec.com/about-me_jeremiah.html Jeremiah Grossman], CTO of WhiteHat Security''   
 
''[https://www.whitehatsec.com/about-me_jeremiah.html Jeremiah Grossman], CTO of WhiteHat Security''   
 +
<!-- Deck source is http://www.slideshare.net/jeremiahgrossman/15-years-of-web-security-the-rebellious-teenage-years -->
  
 
  |-
 
  |-
  
  | style="width:10%; background:#7B8ABD" | 10:10-10:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Break - Expo
+
  | style="width:10%; background:#7B8ABD" | 10:00 - 10:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Break - Expo
 
  |-
 
  |-
  
  | style="width:10%; background:#7B8ABD" | || colspan="1" style="width:45%; background:#BC857A" | '''Tech Track - Zenith Room 640'''
+
  | style="width:10%; background:#7B8ABD" | || colspan="1" style="width:35%; background:#BC857A" | '''Track 1 - Upstairs'''
  | colspan="1" style="width:45%; background:#BCA57A" | '''Management Track - Senate Chamber'''  
+
  | colspan="1" style="width:35%; background:#BCA57A" | '''Track 2 - Downstairs'''  
<!-- | style="width:22%; background:#C6E2FF" | '''Management / Exec Track: Room 3''' -->
+
| colspan="1" style="width:35%; background:#C6E2FF" | '''AppSec 101: Dungeon'''  
 
  |-
 
  |-
  
  | style="width:10%; background:#7B8ABD" | 10:30-11:15 || style="width:45%; background:#BC857A" align="left" | OWASP Passfault
+
  | style="width:10%; background:#7B8ABD" | 10:30 - 11:15 || style="width:35%; background:#BC857A" align="left" | Making AppSec Easier: the best OWASP projects and how to leverage a worldwide AppSec effort in YOUR organization
''Cameron Morris''
+
''OWASP Board''
  
  | style="width:45%; background:#BCA57A" align="left" | Managing IT Risk in a Cloud Environment
+
  | style="width:35%; background:#BCA57A" align="left" | AppSec Pipelines: DevOps and Making Things Better
''Karl Steinkamp''
+
''Matt Tesauro''
  
<!-- | style="width:22%; background:#C6E2FF" align="left" | TBD
+
  | colspan="1" style="width:35%; background:#C6E2FF" align="left" | Web App Testing 101
''TBD''  
+
''Danny Chrastil''  
-->
 
 
  |-
 
  |-
  
  
| style="width:10%; background:#7B8ABD" | 11:15-12:00 || style="width:45%; background:#BC857A" align="left" | State of Web Security: Monitored Attacks
+
| style="width:10%; background:#7B8ABD" | 11:30 - 12:00 || style="width:35%; background:#BC857A" align="left" | Lightning Talk: Getting Root via DeSerialization Attacks
 
   
 
   
''Robert Rowley''
+
''Mark Hoopes''
  
| style="width:45%; background:#BCA57A" align="left" | PCI vs Risk Management 
+
| style="width:35%; background:#BCA57A" align="left" | Lightning Talk: Career Planning - What the Heck am I Doing Here?
''Doug Landoll''   
+
''Andy Lewis''   
<!-- | style="width:22%; background:#C6E2FF" align="left" | Securing Data from the Web Tier ''Mike Fleck'' -->
+
| style="width:35%; background:#C6E2FF" align="left" | AppSec Blue Team Basics ''Tyler Bell''  
  
 
  |-
 
  |-
  
  
  | style="width:10%; background:#7B8ABD" | 12:00-13:00 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Lunch - Expo
+
  | style="width:10%; background:#7B8ABD" | 12:00 - 1:00 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Lunch
 
   |-
 
   |-
  
 +
| style="width:10%; background:#7B8ABD" | 1:00 - 1:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Expo
 +
  |-
  
| style="width:10%; background:#7B8ABD" | 13:00-13:50 || style="width:45%; background:#BC857A" align="left" | WebGoat.NET
 
 
''Jerry Hoff''
 
  
| style="width:45%; background:#BCA57A" align="left" | Securing Data from the Web Tier 
+
| style="width:10%; background:#7B8ABD" | 1:30 - 2:30 || style="width:45%; background:#BC857A" align="left" | It's in the Cloud - It's Secure Like Voting Machines, Right?
''Mike Fleck''   
+
''Dan Weiske''
<!-- | style="width:22%; background:#C6E2FF" align="left" | TBD
+
 
''TBD'' -->
+
| style="width:45%; background:#BCA57A" align="left" | Embracing IoT Initiatives
 +
''LAZ''   
 +
| style="width:22%; background:#C6E2FF" align="left" | Exploitation 101 w/MetaSploit
 +
''Brad Woodward''  
  
 
  |-
 
  |-
  
  
  | style="width:10%; background:#7B8ABD" | 13:50-14:40 || style="width:45%; background:#BC857A" align="left" | Gray, the new black: Gray box vulnerability testing
+
  | style="width:10%; background:#7B8ABD" | 2:30 - 3:30 || style="width:45%; background:#BC857A" align="left" | False Positives in SAST: The Good, the Bad, and the Ugly
''Adam Hills''
+
''Andy Earle''
 +
 
 +
| style="width:45%; background:#BCA57A" align="left" | IOT/Embedded Systems hacking
 +
''Max Sobell and Jeremy Allen''
  
  | style="width:45%; background:#BCA57A" align="left" | What the Cyber Criminals are Doing on Your Website Right Now.
+
  | style="width:22%; background:#C6E2FF" align="left" | Build a Raspberry Pi Pentest Platform
''LAZ''
+
''Bo Pearce''
  
<!-- | style="width:22%; background:#C6E2FF" align="left" | TBD
 
''TBD''
 
-->
 
 
  |-
 
  |-
  
  | style="width:10%; background:#7B8ABD" | 14:40-15:00 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | BREAK
+
  | style="width:10%; background:#7B8ABD" | 3:30 - 3:45 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | BREAK
 
  |-
 
  |-
  
| style="width:10%; background:#7B8ABD" | 15:00-15:50 || style="width:45%; background:#BC857A" align="left" | "The Mobile Top 10"
 
''Mike Zussman''
 
  
| style="width:45%; background:#BCA57A" align="left" | A Scalable Secure Development Program
 
''Rajiv Sharma''
 
 
<!--
 
| style="width:22%; background:#C6E2FF" align="left" | TBD
 
''TBD''
 
-->
 
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 15:50-16:30 || colspan="3" style="width:80%; background:#F2F2F2" align="center" | End of Conference Panel Discussion:  
+
  | style="width:10%; background:#7B8ABD" | 4:00 - 4:45 || colspan="3" style="width:80%; background:#F2F2F2" align="center" | End of Conference Panel Discussion:  
  
 
Topic: ''The Crystal Ball and the 2-headed Calf - What's on the Horizon and Why Does It Seem So Unnatural?''   
 
Topic: ''The Crystal Ball and the 2-headed Calf - What's on the Horizon and Why Does It Seem So Unnatural?''   
  
'''Moderator:''' ''Andy Lewis''
+
'''Moderator:''' ''Matt Schufeldt''
'''Panelists:''' ''Laz, Matt Tesauro, John Pirc, Tanner Coltrin, René Agüero, Steve Kosten, others''
+
'''Panelists:''' ''Jeremiah Grossman, Laz, Matt Tesauro, Steve Kosten, others''
 
  |-
 
  |-
  
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 16:30-17:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Wrap up, vendor raffles!
+
  | style="width:10%; background:#7B8ABD" | 4:45-5:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Wrap up, vendor raffles!
 
  |-
 
  |-
  
 
|}
 
|}
 
 
====Logistics====
 
[[Image:Denver_mountains.JPG]]
 
 
This year, the conference will again be held at University of Colorado, Denver at the [http://maps.google.com/maps?hl=en&ie=UTF8&cid=0,0,17887458453474608109&fb=1&split=1&gl=us&dq=Tivoli+Student+Union+in+downtown+Denver,+CO&daddr=900+Auraria+Pkwy+%23+325E,+Denver,+CO+80204&geocode=2315206160437382962,39.746366,-105.007463&ei=jKOsSeKrM5O5twfLh4GDBg&z=16 Tivoli Student Union]  (900 Auraria Pkwy # 325E Denver, CO 80204).
 
 
<!--  *** need image, lat-long, directions [[File:Froc map.GIF|thumb|left]]
 
 
[http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=1200+Larimer+Street,+Denver,+CO&sll=37.0625,-95.677068&sspn=37.188995,62.226563&ie=UTF8&hq=&hnear=1200+Larimer+St,+Denver,+Colorado+80204&z=16&iwloc=A Google Map of the Venue: 1200 Larimer St., Denver CO 80204]
 
-->
 
 
=====Accomodation=====
 
OWASP is in the process of negotiating discounted rates with the uber-pimpin [http://www.hotelteatro.com/ Hotel Teatro].  Rooms under the FROC rate will be competitively priced and include courtesy Cadillac Escalade transportation to and from Auraria Campus. Currently a "petite queen" room will be reduced from $279/night to $149 by mentioning SnowFROC.
 
 
To reserve a room, contact Hotel Teatro at +1.303.228.1100 and mention SnowFROC or use the [https://reservations.ihotelier.com/crs/g_reservation.cfm?groupID=464765&hotelID=14708 iHotelier.com link here].
 
 
=====How to get to the venue?=====
 
 
*By taxi: taxi from the airport to venue is about $50 USD
 
 
*From hotel: transport from the conference hotel (Hotel Teatro) by limo is free
 
 
*By car: there is plenty of parking at the Tivoli.  Attendees should park at the Tivoli lot (as in past years).  Parking validation will be provided for registered FROC participants.
 
 
====Call for Presentations====
 
<!-- The [[Front_Range_OWASP_Conference_2012_CFP|call for presentations]] is open until February 23rd 2012. -->
 
The [[Front_Range_OWASP_Conference_2012_CFP|call for presentations]] closed February 23rd.  If you've got a compelling presentation involving bleeding-edge research please contact steve dot kosten /\+ owasp d0+ org for consideration.
 
 
 
<!-- ===[[SnowFROC Tentative Schedule]]=== -->
 
 
<!-- Back to [https://www.owasp.org/index.php/Front_Range_OWASP_Conference_2009 SnowFROC Home] -->
 
 
<!-- ====Capture the Flag (CTF)====
 
 
A capture the flag contest may be held if we can find space and someone to set it up and lead it.
 
-->
 
 
====Conference Committee====
 
 
FROC 2012 Planning Committee Chair: Kathy Thaxton -  kthaxton at hosting dot com
 
 
Presentation Selection Committee:
 
* Steve Kosten
 
* Denver OWASP Board
 
 
 
Colorado Chapter Hosts:
 
* Andy Lewis - OWASP Denver - alewis at owasp dot org
 
* Mark Major - OWASP Boulder - mark dot major at owasp dot org
 
* Might have a CO Springs chapter in time for SnowFROC; stay tuned...
 
 
Vendor Exhibition POC: Kathy Thaxton - kthaxton at hosting dot com
 
 
 
<!-- Capture the Flag POC: Eric Duprey - eduprey at owasp dot org
 
-->
 
 
====Sponsors====
 
 
If you are interested in sponsoring the Front Range OWASP Conference, please contact Kathy Thaxton at kthaxton at hosting dot com.
 
<!-- [[File:Sponsors.PNG]]
 
-->
 
 
We are proud to have the following sponsors for this year's conference:
 
<!--
 
*Accuvant
 
*Breach
 
*Business Partner Solutions
 
*Denim Group
 
*Fishnet Security
 
*IBM
 
*Imperva
 
*Laz
 
*Lares
 
*Trustwave
 
*WhiteHat Security
 
*Hosting.com
 
-->
 
<!--
 
 
*[http://www.denimgroup.com/ Denim Group]
 
*[http://www.fortify.com/ Fortify Software]
 
-->
 
 
*[http://www.accuvant.com/ Accuvant]
 
*[http://www.hosting.com/ Hosting.com]
 
*[http://www.whitehatsec.com/home/index.html Whitehat Security]
 
*[http://www.hpenterprisesecurity.com/register/esp-grand-slam-camp-hpesp-homepage HP ESP]
 
*[http://www.coalfire.com/Home Coalfire Systems]
 
*[http://www.rapid7.com/ Rapid7]
 
*[http://www.silvertailsystems.com/ Silvertail Systems]
 
*[http://www.southseascorp.com/ South Seas Corporation]
 
 
 
<!--  *** Logistics information for sponsors is available [[FROC2010 Sponsor Info|here]]
 
 
More information about conference sponsorship is available [[OWASP AppSec Conference Sponsors | here]].
 
-->
 
 
[[Category:OWASP AppSec Conference]]
 
 
 
<!--
 
====Twitter Feed====
 
{|
 
|-
 
| style="border: 1px solid rgb(204, 204, 204); width: 100%; font-size: 95%; color: rgb(0, 0, 0); background-color: rgb(236, 236, 236);" |
 
Use the '''[http://search.twitter.com/search?q=%23FROC #FROC]''' hashtag for your tweets (What are [http://hashtags.org/ hashtags]?)
 
 
'''@OWASP303 Twitter Feed ([http://twitter.com/OWASP303 follow us on Twitter!])'''
 
<twitter>55021150</twitter>
 
 
| style="width: 110px; font-size: 95%; color: rgb(0, 0, 0);" |
 
|}
 
-->
 
 
 
 
 
<!-- <hr>
 
<paypal>Denver</paypal> -->
 
 
<headertabs />
 

Latest revision as of 18:08, 15 February 2016


The agenda follows the successful OWASP conference multi track format, with opening keynotes and presentations in the main room & broadcast throughout the facility, split tracks in the middle of the day, and closing panel discussions at the end of the day. NOTE: schedule is subject to change.

Thursday, February 18th, 2016
7:45 - 8:30 Registration and Continental Breakfast in the lobby
8:30 - 8:45 Welcome to SnowFROC 2016 Conference

OWASP Denver and OWASP Boulder Chapter Leaders

8:45 - 9:00

State of OWASP

Tom Brennan

9:00 - 10:00 Keynote: 15 Years of Web Security - The Rebellious Teenage Years

Jeremiah Grossman, CTO of WhiteHat Security

10:00 - 10:30 Break - Expo
Track 1 - Upstairs Track 2 - Downstairs AppSec 101: Dungeon
10:30 - 11:15 Making AppSec Easier: the best OWASP projects and how to leverage a worldwide AppSec effort in YOUR organization

OWASP Board

AppSec Pipelines: DevOps and Making Things Better

Matt Tesauro

Web App Testing 101

Danny Chrastil

11:30 - 12:00 Lightning Talk: Getting Root via DeSerialization Attacks

Mark Hoopes

Lightning Talk: Career Planning - What the Heck am I Doing Here?

Andy Lewis

AppSec Blue Team Basics Tyler Bell
12:00 - 1:00 Lunch
1:00 - 1:30 Expo
1:30 - 2:30 It's in the Cloud - It's Secure Like Voting Machines, Right?

Dan Weiske

Embracing IoT Initiatives

LAZ

Exploitation 101 w/MetaSploit

Brad Woodward

2:30 - 3:30 False Positives in SAST: The Good, the Bad, and the Ugly

Andy Earle

IOT/Embedded Systems hacking

Max Sobell and Jeremy Allen

Build a Raspberry Pi Pentest Platform

Bo Pearce

3:30 - 3:45 BREAK
4:00 - 4:45 End of Conference Panel Discussion:

Topic: The Crystal Ball and the 2-headed Calf - What's on the Horizon and Why Does It Seem So Unnatural?

Moderator: Matt Schufeldt Panelists: Jeremiah Grossman, Laz, Matt Tesauro, Steve Kosten, others

4:45-5:30 Wrap up, vendor raffles!
Retrieved from "https://wiki.owasp.org/index.php?title=Front_Range_OWASP_Conference_2016/Schedule&oldid=208961"