This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Charlottesville"

From OWASP
Jump to: navigation, search
(Chapter Meetings)
 
(29 intermediate revisions by 4 users not shown)
Line 1: Line 1:
{{Chapter Template Tabs|chaptername=Charlottesville|extra=The chapter leader is [http://www.owasp.org/index.php/User:Dale_Castle Dale Castle]|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-Charlottesville|emailarchives=http://lists.owasp.org/pipermail/owasp-Charlottesville|paypal=<paypal>Charlottesville</paypal>}}
+
This chapter is being reorganized and expanded to include Lynchburg, Virginia and Southwestern Virginia's many Universities. The new chapter is [[Southwest Virginia]] and is led by [mailto:Jeffrey.Collyer@owasp.org Jeffrey Collyer] and [mailto:Phil.offield@owasp.org Phil Offield] Vist the new [[Southwest Virginia]] chapter page for meeting announcements. This page will be deprecated shortly, but the View History page will remain live for the historical record.
  
==== Chapter Meetings ====
+
{{Chapter Template|chaptername=Charlottesville|extra=The chapter leader is [mailto:[email protected] Jeffrey Collyer].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-Charlottesville|emailarchives=http://lists.owasp.org/pipermail/owasp-Charlottesville}}
'''DATE''': Wednesday, March 17, 2010  Time: 5:30pm - 7:30pm Eastern Daylight Time<BR>
 
'''LOCATION''': [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=Room+236D+Olsson+Hall,+University+of+Virginia,+Charlottesville,+VA+22903&sll=37.0625,-95.677068&sspn=39.86519,91.142578&ie=UTF8&hq=&hnear=Olsson+Hall,+Charlottesville,+Albemarle,+Virginia+22903&ll=38.032915,-78.510447&spn=0.019403,0.044503&z=15&iwloc=A Room 236D Olsson Hall, University of Virginia, Charlottesville, VA 22903]<BR>
 
'''TOPIC''': "Deploying Secure Web Applications with Resources from the Open Web Application Security Project"<BR>
 
'''SPEAKER''': Kuai Hinojosa, Web Applications Specialist, New York University <BR>
 
  
'''The Abstract''':<BR>
+
==== Previous Chapter Meetings ====
In this presentation we will discuss most common security vulnerabilities web applications face at this time and explain how OWASP resources such as maturity models and guides that can be used by universities to formulate and implement a strategy for software security, as well as testing and deploying secure web applications. We will also demo OWASP tools that are currently used at NYU and UCI to test and mitigate most common web application flaws, introduce the OWASP Enterprise Security API 2.0 discuss new features and provide examples of how it can be used to mitigate common security vulnerabilities, and share some education resources and initiatives that the Open Web Application Security Project has to offer. If you are interested in protecting universities assets and making web applications more secure, you don't want to miss this!<BR>
 
  
'''About our speaker''': Kuai Hinojosa, Web Applications Specialist, New York University<BR>
+
'''DATE''': Tuesday, April 16th, 2013. 12:00pm to 1:00pm Eastern Daylight Time<BR>
 +
'''LOCATION''':[http://youtu.be/_HFN6YivsqA Recording]<BR>
 +
'''TOPIC''': "[https://www.owasp.org/index.php/GSoC OWASP Google Summer of Code (GSoC) 2013]"<BR>
 +
'''SPEAKER''': OWASP GSoC 2013 Administrator, [https://www.owasp.org/index.php/User:Fabio.e.cerullo Fabio Cerullo]<BR>
 +
'''DESCRIPTION''': Whether you want to flip bits instead of burgers between semesters this summer, mentor budding developers, or are just curious how the OWASP Google Summer of Code works, you don't want to miss this lunchtime online meeting to discuss the program with the OWASP GSoC 2013 Administrator, Fabio Cerullo who will be joining us from Ireland. Note: [http://www.google-melange.com/gsoc/proposal/review/google/gsoc2012/guifre/3006 Accepted Proposal from OWASP GSoC 2012]<BR><BR>
  
Kuai Hinojosa has been developing and securing web applications for about 12 years. Formerly, he protected company assets as a database security administrator in the banking industry. He now works for New York University as a Web Applications Specialist, where he continues to use web application development and application security experience to protect university resources. In his spare time Kuai volunteers his time preaching the application security gospel and leading the Minneapolis OWASP chapter. Kuai is a member of the OWASP (Open Web Application Security Project), Global Education Committee, and a board member of the New York and NJ Metro area OWASP Chapter.<BR><BR>
 
  
  
'''DATE''': Thursday, November 19, 2009. 4:00pm Eastern Daylight Time<BR>
+
'''DATE''': Monday, August 20th, 2012. 5:00pm to 9:00pm Eastern Daylight Time<BR>
'''LOCATION''': [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=2400+old+ivy+road+22904&sll=37.0625,-95.677068&sspn=33.901528,57.744141&ie=UTF8&hq=&hnear=2400+Old+Ivy+Rd,+Charlottesville,+Albemarle,+Virginia+22903&ll=38.047094,-78.518901&spn=0.008229,0.014098&t=h&z=16&iwloc=A Room 265 at 2400 Old Ivy Road, Charlottesville, VA 22903]<BR>
+
'''LOCATION''': [https://maps.google.com/maps?daddr=38.05372,-78.513805&hl=en&sll=38.053346,-78.513408&sspn=0.001204,0.002401&t=h&gl=us&mra=mift&mrsp=1&sz=19&z=19 University of Virginia Darden School of Business Room 50]<BR>
'''TOPIC''': "Cross-Site Scripting Anonymous Browsers"<BR>
+
'''TOPIC''': "Web Application Testing with [http://samurai.inguardians.com Samurai Web Testing Framework]"<BR>
'''SPEAKER''': Matthew Flick, Principal FYRM Associates<BR>
+
'''SPEAKER''': SANS Instructor, [http://www.sans.org/instructors/Justin-Searle Justin Searle]<BR>
'''DESCRIPTION''': Matthew Flick will give an encore of his talk on the Cross-Site Scripting Anonymous Browsers (XAB) that he has previously presented at Black Hat and at Defcon. Time permitting, we will then move to the lab in room 136 to do hands on Cross-Site Scripting exercises.<BR><BR>
+
'''DESCRIPTION''': Whether you are a web server administrator, web developer, information security professional or just want to increase your web application security awareness, this event is not to be missed. Bring your laptop with DVD drive and VMware player installed for hands-on learning free and open to the public. Pizza and drinks will be provided. See you there!<BR><BR>
 
 
'''XAB - The Abstract''':<BR>
 
Earlier this year, the Cross-site Scripting Anonymous Browser (“XAB”) was presented at Black Hat DC as a new perspective on how we could extend the functionality of browser technologies, form dynamic botnets for browsing, and create an unpronounceable acronym all at once. We continued the madness with a second incarnation of the XAB framework at Defcon in August.<BR>
 
 
 
XAB hasn't really revolutionized attacks or defenses in it's short lifespan, nor is it great at factoring primes. However, it has opened minds by demonstrating an interesting way to combine unlike ideas and creating a new animal all of it's own. Think of it as forced social networking, without ever really knowing who you're talking to, or what they're saying.<BR>
 
 
 
During this presentation, we will explain the origins of the concept, provide a brief review of the technologies, pour over the trials and tribulations of the enhancements and additions of the past 6 months, provide a live demonstration of the improvements, and continue the conversation about the future of the framework.<BR><BR>
 
 
 
'''About our speaker''': Matthew Flick, Principal FYRM Associates<BR>
 
 
 
Matt has more than seven years of professional experience in information assurance focusing in network and application security, assessments, and compliance. He has assessed and helped develop information assurance programs for commercial clients in several industries as well as several Federal agencies.<BR>
 
 
 
Matt leads the Information Assurance team at FYRM Associates in delivering consulting services in the areas of application security, assessments, network and wireless security, and security program development. He has performed assessments of many in-house and commercial/third party developed applications, wired and wireless network infrastructures, and complex corporate environments. His primary area of expertise is in application security, which drives much of the focus of FYRM's Information Assurance research and development.<BR>
 
 
 
Matt’s other areas of expertise include computer programming, cryptology, and compliance with Federal standards and regulatory compliance, such as FISMA, HIPAA, Sarbanes-Oxley, and PCI-DSS<BR><BR>
 
 
 
'''DATE''': Thursday, October 22, 2009. 4:00pm Eastern Daylight Time<BR>
 
'''LOCATION''': [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=2400+old+ivy+road+22904&sll=37.0625,-95.677068&sspn=33.901528,57.744141&ie=UTF8&hq=&hnear=2400+Old+Ivy+Rd,+Charlottesville,+Albemarle,+Virginia+22903&ll=38.047094,-78.518901&spn=0.008229,0.014098&t=h&z=16&iwloc=A rooms 134 & 136 at 2400 Old Ivy Road, Charlottesville, VA 22903]<BR>
 
'''TOPIC''': "Kickoff meeting for OWASP-Charlottesville"<BR>
 
'''SPEAKER''': [http://www.owasp.org/index.php/User:Jeff_Williams Jeff Williams], OWASP Foundation Chair, CEO of [http://www.aspectsecurity.com/ Aspect Security] and a Computer Science graduate from the University of Virginia.
 
 
 
'''INSTRUCTIONS''': [mailto:[email protected]?Subject=OWASP%20Charlottesville%20RSVP RSVP to [email protected]] with “OWASP Charlottesville RSVP” in the subject.
 
 
 
'''DESCRIPTION''':  
 
We're pleased to invite you to our first OWASP Charlottesville Chapter meeting. We will be hosting a hands on session using the tools on the  [http://www.owasp.org/index.php/Category:OWASP_Live_CD_Project OWASP LiveCD] to exploit actual vulnerabilities in a web application followed by a Chapter kickoff presentation by the OWASP Chair.
 
The hands on session will begin in rooms 136 and 134 at 4pm. At 5pm, we will move to room 189 for refreshments and a Chapter kickoff presentation.
 
Anyone interested in web application security is invited to attend. Please [mailto:[email protected]?Subject=OWASP%20Charlottesville%20RSVP RSVP] so we have enough food, drink and free stuff to give away.
 
  
 
Everyone is welcome to join us at our chapter meetings.
 
Everyone is welcome to join us at our chapter meetings.
Line 52: Line 23:
 
__NOTOC__
 
__NOTOC__
 
<headertabs/>
 
<headertabs/>
 +
 +
[[Category:United_States]]
 +
[[Category:Virginia]]
 +
[[Category:OWASP Chapter]]

Latest revision as of 21:53, 11 January 2016

This chapter is being reorganized and expanded to include Lynchburg, Virginia and Southwestern Virginia's many Universities. The new chapter is Southwest Virginia and is led by Jeffrey Collyer and Phil Offield Vist the new Southwest Virginia chapter page for meeting announcements. This page will be deprecated shortly, but the View History page will remain live for the historical record.


OWASP Charlottesville

Welcome to the Charlottesville chapter homepage. The chapter leader is Jeffrey Collyer.


Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


Previous Chapter Meetings

DATE: Tuesday, April 16th, 2013. 12:00pm to 1:00pm Eastern Daylight Time
LOCATION:Recording
TOPIC: "OWASP Google Summer of Code (GSoC) 2013"
SPEAKER: OWASP GSoC 2013 Administrator, Fabio Cerullo
DESCRIPTION: Whether you want to flip bits instead of burgers between semesters this summer, mentor budding developers, or are just curious how the OWASP Google Summer of Code works, you don't want to miss this lunchtime online meeting to discuss the program with the OWASP GSoC 2013 Administrator, Fabio Cerullo who will be joining us from Ireland. Note: Accepted Proposal from OWASP GSoC 2012


DATE: Monday, August 20th, 2012. 5:00pm to 9:00pm Eastern Daylight Time
LOCATION: University of Virginia Darden School of Business Room 50
TOPIC: "Web Application Testing with Samurai Web Testing Framework"
SPEAKER: SANS Instructor, Justin Searle
DESCRIPTION: Whether you are a web server administrator, web developer, information security professional or just want to increase your web application security awareness, this event is not to be missed. Bring your laptop with DVD drive and VMware player installed for hands-on learning free and open to the public. Pizza and drinks will be provided. See you there!

Everyone is welcome to join us at our chapter meetings.


Retrieved from "https://wiki.owasp.org/index.php?title=Charlottesville&oldid=206267"