|
|
| (111 intermediate revisions by 6 users not shown) |
| Line 1: |
Line 1: |
| − | {{Chapter Template|chaptername=Mumbai|extra=The chapter leader is [mailto:dharmeshmm@mastek.com Dharmesh M Mehta] (+91 9730002132) of Mastek Ltd.
| + | == OWASP Mumbai == |
| − | Join us at our [http://lists.owasp.org/mailman/listinfo/owasp-mumbai mailing list] |mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-mumbai|emailarchives=http://lists.owasp.org/pipermail/owasp-mumbai}}
| |
| | | | |
| − | <paypal>Mumbai</paypal>
| + | Welcome to the OWASP Mumbai chapter homepage. Current Chapter Leaders are Yash Roongta and Anantkumar Joshi. (More information about our leaders available below). |
| | | | |
| − | <u>The Chapter Mailing Address is:</u><br>
| + | [[File:OWASP Mumbai Logo YR.png|frameless|502x502px]] |
| − | Dharmesh Mehta<br>
| |
| − | Mastek Ltd, Unit 183, SDF 6,<br>
| |
| − | SEEPZ, Andheri (E), Mumbai 400 096.<br>
| |
| − | +91 9730002132<br>
| |
| | | | |
| | + | == Participation == |
| | + | OWASP Foundation ([https://docs.google.com/a/owasp.org/presentation/d/10wi1EWFCPZwCpkB6qZaBNN8mR2XfQs8sLxcj9SCsP6c/edit?usp=sharing Overview Slides]) is a professional association of [[Membership | global members]] and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the [[Chapter_Leader_Handbook]]. As a [[About_OWASP | 501(c)(3)]] non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a <b>SPEAKER</b> at ANY OWASP Chapter in the world simply review the [[Speaker_Agreement | speaker agreement]] and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on. |
| | | | |
| − | == Upcoming OWASP Mumbai Chapter Meeting == | + | == Sponsorship/Membership == |
| | | | |
| − | '''Date: Tentative on 18th Feb / 25th Feb 2009
| + | '''Venue Sponsor:''' Network Intelligence India Pvt. Ltd. |
| | | | |
| − | '''Venue: To be declared soon !! '''
| + | [[File:Network intelligence-01.png|frameless|230x230px]] |
| | | | |
| − | '''Call for Presentations: OWASP Mumbai February 2009 Meet
| |
| − | OWASP Mumbai Chapter calls for papers for presentation for its upcoming meet in February 2009.
| |
| − | If you are interested in speaking at the event, sharing your thoughts, send in your topic brief (100 words) and your brief profile.
| |
| − |
| |
| | | | |
| − | '''Interested in Sponsoring??
| + | [[Image:Btn_donate_SM.gif|link=https://www.owasp.org/index.php/Local_Chapter_Supporter]] to this chapter or become a local chapter supporter. |
| − | Send a mail to dharmeshmm at owasp dot org to understand the sponsorship details. ''' | + | Or consider the value of [[Membership | Individual, Corporate, or Academic Supporter membership]]. Ready to become a member? [[Image:Join_Now_BlueIcon.JPG|75px|link=https://www.owasp.org/index.php/Membership]] |
| | + | |
| | + | [[Category:OWASP Chapter]] |
| | + | {{#if:{{{region|}}}| |
| | + | [[Category:{{{region}}}]] |
| | + | }} |
| | + | |
| | + | == Become a Speaker == |
| | + | |
| | + | Submit your topic to us at the following google form: https://forms.gle/MaxcTgZddb76cb7k7 |
| | + | <br> |
| | + | <br> |
| | + | = '''Announcements''' = |
| | + | |
| | + | === Follow @OWASP_Mumbai for event updates on Twitter === |
| | + | |
| | + | '''[https://twitter.com/OWASP_Mumbai OWASP Mumbai Twitter Account]''' |
| | + | |
| | + | === Links for sharing and easy to remember Wiki Page - '''https://bit.ly/2SMBqDP''' === |
| | + | |
| | + | * OWASP Mumbai Meetup https://www.meetup.com/OWASP-Mumbai-Chapter/ |
| | + | * OWASP Mumbai Discord Server https://discord.gg/PGsNnDJ |
| | | | |
| − | '''Registrations OPEN !!
| + | = '''Next Meeting''' = |
| − |
| |
| − | OWASP Chapter Meetings are FREE to attend.
| |
| − | Kindly drop a mail to dharmeshmm at owasp dot org with following details to register for the event.
| |
| − | Your Name:
| |
| − | Your Organization/Institution:
| |
| − | Your Designation:
| |
| − | Your Contact No.:
| |
| | | | |
| − | '''Event Sponsors : Sun StartUp Essentials & Mastek '''
| + | === '''Sessions''' === |
| | | | |
| − | [http://in.sun.com/emrkt/startupessentials/index.jsp https://www.owasp.org/images/8/8e/SunStartupEssentials.jpg]
| + | '''OWASP Mumbai Meetup - 30th November 2019''' |
| | | | |
| − | Sun StartUp Essentials - The Sun StartUp Essentials program is designed specifically to help startups get off the ground rapidly and at lower cost. The program consists of discounted or free products and services designed with startups in mind. In addition a quick application and online catalogue delivers what you need fast. Website: in.sun.com/startupessentials/
| + | '''Session Details:''' |
| | | | |
| | + | The motto of the OWASP community is to share the knowledge for cyber security, free of cost. |
| | | | |
| − | [http://www.mastek.com https://www.owasp.org/images/f/fe/Mastek_logo.gif]
| + | Session Details: |
| | | | |
| − | Mastek is an international software solutions and integration services provider that designs, develops, integrates and maintains business applications to enable enterprises to solve complex, mission-critical business problems. Mastek also provides Application Security Consulting and Services like Defense Solutions, Secure Design Reviews, Application Security Workshops and Web Application Security Assessments. Website: www.mastek.com
| + | Introduction to OWASP Mumbai Chapter. |
| | | | |
| | + | Firmware Analysis by '''Pratik Chotaliya''' |
| | | | |
| | + | Report Writing in Cyber Security by '''Ashwini Varadkar''' |
| | | | |
| | + | Attack (Si|Emulation) by '''Chirag Savla''' |
| | | | |
| − | == Summary of OWASP Mumbai Chapter Meetings Held To-Date ==
| + | QnA, General Discussion and Feedback. |
| | | | |
| − | '''Topics presented till date:'''
| + | RSVP Link: https://www.meetup.com/OWASP-Mumbai-Chapter/events/266683098/ |
| | | | |
| − | 1. Secure coding fundamentals - '''Richard Lewis''', Tech Mahindra
| + | Slides from the Meetup: [[:File:30th November 2019.zip|Download Here]] |
| | | | |
| − | 2. Threat Analysis and Modeling - '''Dharmesh Mehta''', Mastek
| + | = '''Previous Meeting & Archives''' = |
| | | | |
| − | 3. 5 ways to lose your user's password - '''Shalini Gupta''', '''Runa Dwibedi''' - Paladion Networks
| + | '''OWASP Mumbai Meetup - 19th October 2019''' |
| | | | |
| − | 4. Significance of Random Numbers in Application Security - '''Richard Lewis''', Tech Mahindra
| + | '''Session Details:''' |
| | | | |
| − | 5. Defeating Java Decompilation - '''Girish Kulkarni''', Tech Mahindra
| + | The motto of the OWASP community is to share the knowledge for cyber security, free of cost. |
| | | | |
| − | 6. /GS Security Check in Visual Studio - '''Chanda Dutta''' et al, Tech Mahindra
| + | Session Details: |
| | | | |
| − | 7. Black Vector of Web Exploitation - '''Aditya Sood''', Sec Niche
| + | Introduction to OWASP Mumbai Chapter. |
| − | [[https://www.owasp.org/images/4/48/Owasp_Live0_Conf_Talk_Aditya_K_Sood_Sec_Niche.pdf Download Presentation]]
| |
| | | | |
| − | 8. End User Privacy Breaches : '''Rishi Narang''', ThirdBrigade
| + | Field Updates with '''Anantkumar Joshi.''' |
| − | [[https://www.owasp.org/images/4/4c/OWASP_Day_Rishi_Narang.pdf Download Presentation]]
| |
| | | | |
| − | 9. Privacy on the Web - The road ahead in the 21st century : '''Yogesh Badwe''', Orange Business Services
| + | OWASP Top 10 (A1,A2,A3) by '''Rohan Rane.''' |
| − | [[https://www.owasp.org/images/f/fe/Privacy_0n_the_Web_-_The_Road_Ahead_in_the_21st_Century.pdf Download Presentation]]
| |
| | | | |
| − | 10. Testing Large Number of Applications - '''Madhumita Iyer''', Paladion Networks | + | OWASP Top 10 (A4,A5,A9) by '''Gurpreet Kaur.''' |
| − | [[https://www.owasp.org/images/0/04/Owasp_Mumbai_9_22_08_MadhumitaIyer.pdf Download Presentation]]
| |
| | | | |
| − | 11. Wireless Security - '''Sheetal Joseph''', Tech Mahindra
| + | OWASP Top 10 (A6,A7,A8,A10) by '''Himanshu Sharma.''' |
| − | [[https://www.owasp.org/images/e/e5/OWASP_Mumbai_2008.pdf Download Presentation]]
| |
| | | | |
| − | [http://owasp.mumbai.googlepages.com/ Download Rest Presentations here >>] | + | Slides from the Meetup: [[:File:19th October 2019.zip|Download Here]] |
| | | | |
| − | == Roster of OWASP Speakers with Profiles ==
| |
| | | | |
| − | 1. '''Anuradha Srinivasan''', Technical Analyst with Mastek, is working with the Application Security Assurance Team for the last 1.5 year. She has 2.5 years of experience in Java development. She is currently involved in conducting Security Assessments and trainings for projects across Mastek.
| + | '''OWASP Mumbai Meetup - 31st August 2019''' |
| | | | |
| − | 2. '''Richard Lewis''', Senior Security Consultant with Tech Mahindra, has 8 years of information security experience. Before joining Tech Mahindra, he worked for Tata Consultancy Services (TCS). Richard works in the e-security group of Tech Mahindra and is building a security fabric for secure software development. Richard has a programming background in C, C++, device drivers and MFC. Richard has led the development of two nation-level PKI deployments (India, UK). He has also led the development of a desktop encryptor, authentication SDK and cryptographic SDK. Richard is married, lives with his wife and daughter in busy Mumbai and loves to read the Bible and engage in church outreach work. Richard maintains a blog on application security at [http://SecureApps.Blogspot.com http://SecureApps.Blogspot.com]
| + | '''Session Details:''' |
| | | | |
| − | 3. '''Dharmesh M Mehta''', Technical Analyst with Mastek, works with the Application Security Assurance Team at Mastek. He is involved in conducting security assessments, threat modeling and conducting security workshops for the developer community. He is also a Certified | Ethical Hacker. Dharmesh is the Chapter Leader for OWASP, Mumbai Chapter. You can read Dharmesh's Blog on Smart Security at [http://SmartSecurity.Blogspot.com http://smartsecurity.blogspot.com]
| + | Introduction to OWASP Mumbai Chapter. |
| | | | |
| − | 4. '''Shalini Gupta''', Associate Security Consultant at Paladion. She completed her MPIT (Network Specialization) from SCIT in 2005. With Paladion she has an experience of more than 1.5 years in the application security field. Among her other contributions in the area of Application Security is a 2-part series on SSL that Shalini wrote for Palisade, the application security journal for developers.
| + | Secure Coding in Modern C++ by '''Adhokshaj Mishra''' |
| | | | |
| − | 5. '''Runa Dwibedi''', Associate Consultant at Paladion. She is a certified BS7799 Lead Auditor. She completed her MCA from Bangalore University and also holds an MBA degree from SCDL, Pune. She has an experience of 1.5 years in development of security tools and an experience of 1 year in application security field. She is also actively involved in writing and publishing articles for Palisade.
| + | Follow us on Twitter: @OWASP_Mumbai |
| | | | |
| − | 6. '''Girish Kulkarni''' has 2.5 years of information security experience. Before joining Tech Mahindra, he was employed with Tata Consultancy Services (TCS). Girish currently works in the Enterprise DRM group as Technical Associate and is part of DRM product development team. Girish has a programming background in JAVA and is also proficient in JAVA swing. He has been involved in a very large PKI deployment for the Indian government.
| + | Slides from the Meetup & Sample Codes: [[:File:OWASP Mumbai Meetup - 31st August 2019.zip|Download Here]]. |
| | | | |
| − | 7. '''Chanda Dutta, Divya Makhija, Sugita Kumari, Upma Sharma''' – Trainees pursuing PGDM-Software Development and Management from Symbiosis Centre for Information Technology. Upma is pursuing PGDM-Systems from the same institute. They work in the Secure Software Engineering practice at Tech Mahindra.
| + | = '''Chapter Leaders'''= |
| | + | == Current Chapter Leaders == |
| | | | |
| − | 8. '''Aditya Sood''' – Independent Security Researcher. He is the founder of SecNiche (www.secniche.org). He has been an active speaker at CERT-IN and XFocus - XCon (China).
| + | '''<br>''' |
| | + | === Yash Roongta (2019 - Present) === |
| | | | |
| − | 9. '''Rishi Narang''' – Vulnerability Research Analyst, Third Brigade. Before joining Third Brigade, he was employed with iPolicy Networks in Security Research Team responsible for IDS/IPS Signatures’ Development for NIPS. Hee has also worked with XIUS Telecom as Server Administrator for Linux and HP Unix Clusters. Currently, he works in the IDS/IPS Filter Development Team and is involved with Vulnerability Research, Zero day attacks & exploits most of the time.
| + | Pentester / Auditor, learning and researching to be a Red Teamer. Been active in the InfoSec domain for close to 3.5 years. |
| | + | Eager to learn from everyone. |
| | + | When I am not researching / studying / learning. You can find me either watching Netflix, or on Dota2 with my friends. |
| | + | Favorite topics: Penetration Testing, Red Teaming, OSINT and Recon. |
| | | | |
| − | 10. '''Yogesh M Badwe''' – Senior Security Engineer, Orange Business Services. Yogesh works in the Web Application Vulnerability Assessment Domain for BFSI clients. Apart from being CCNP and ITIL Certified he also holds the cVa [Certified Vulnerability Assessor-DNV] certification. His previous experience was in the domain of Security Management & implementation of Security Event Management Products on Enterprise Networks. He carries out active research in the field of Security Event-Correlation and Next Generation Attack-Pattern Detection and has published a research paper at an international conference on computer security and forensics relating to privacy issues.
| + | Blog: https://acc3ssp0int.com <br> |
| | + | Contact: yash.roongta@owasp.org |
| | + | |
| | + | Twitter: [https://twitter.com/acc3ssp0int @acc3ssp0int] |
| | | | |
| − | 11. '''Madhumita Iyer''' – Associate Security Consultant, Paladion Networks Private Ltd. Expert in Application Security Testing, Network Penetration Testing and Vulnerability Assessments. She has been a project leader for large scale enterprise application pen tests and has experience in Thick client, Web based and Mobile Application penetration tests.
| + | === '''Anantkumar Joshi (2019 - Present)''' === |
| | + | Working in the field of Cyber Security from 3 years . Focus areas include AppSec and Source code review. |
| | + | Look forward to learning more about other areas in security |
| | + | Favorite topic: Web Application testing,Source Code Review. |
| | + | In my free time I enjoy reading books (Genre: psychological, mystery) |
| | | | |
| − | 12. '''Sheetal Joseph''' – Security Consultant, TechMahindra. She is a subject matter expert for internal line of business clients and external suppliers for security mitigation and maintenance of their internal control environment over data center operations, system development, change management, incident management and contingency planning. She is Prince2 Registered Practitioner, CISSP, CEH, BS7799 Lead Auditor and holds many more certifications.
| + | Twitter: [https://twitter.com/anantjoshi13 @anantjoshi13] <br> |
| | + | Contact: anant.joshi@owasp.org |
| | | | |
| | + | == Current Chapter volunteers == |
| | | | |
| | + | === Ashwini Varadkar (2019 - Present) === |
| | + | |
| | + | Been associated with cyber security for the past 5 years. An avid reader and a professional Kathak dancer, my experience in infosec revolves around technical writing, security assessments, stringent report reviews,and trainings. |
| | + | I believe, there is nothing more rewarding and fulfilling than being able to accomplish everything that your field of interest demands from you. |
| | + | Stay curious and give back to the community. |
| | | | |
| − | '''CPE Credits for CISSP's '''
| + | === Himanshu Sharma (2019 - Present) === |
| − | ISC2 has approved 1 CPE for each hour of an OWASP local chapter meeting.
| + | |
| | + | InfoSec fresher, loves learning and researching about infosec. "Hardcoder" (pun intended). Trying to learn from the infosec community |
| | + | Key interests include: Network Pentesting and Exploit development. |
| | + | |
| | + | === Vaibhav Koli (2019 - Present) === |
| | + | |
| | + | Working in the field of information security from last 3 years. |
| | + | Interesting areas are Web Application security, Red Teaming, APIs |
| | | | |
| − | Chapter leader will have a sign up sheet with at least First Name, Last Name, and the date of the OWASP Meeting. After the meeting, the single sheet will be signed once by a chapter lead as proof of attendance, scanned into a .PDF, and emailed out to the chapter members with the meeting minutes so they have a copy for records and can claim CPE credits.
| + | <headertabs></headertabs> |
| − | ----
| |
| | | | |
| | + | [[Category:OWASP Chapter]] |
| | [[Category:India]] | | [[Category:India]] |
to this chapter or become a local chapter supporter.
Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? 
