|
|
| (150 intermediate revisions by 7 users not shown) |
| Line 1: |
Line 1: |
| − | __NOTOC__ | + | __NOTOC__ {{Chapter Template|chaptername=Minneapolis-St. Paul (OWASP MSP)|extra=The chapter leadership [mailto:alex.bauert@owasp.org Alex Bauert].<br> |
| − | {{Chapter Template|chaptername=Minneapolis-St. Paul (OWASP MSP)|extra=The chapter president is [mailto: adam. baso@owasp.org Adam Baso] and the vice president is [mailto:[email protected] Lorna Alamri].<br> <br>'''Up Next:''' '''[http://owaspmsp20100426chaptermeeting.eventbrite.com/ REGISTER NOW]''' for the Monday, April 26, 2010 local chapter meeting - '''David M. N. Bryan - Do VLANs allow for good application security?''' (room opens at 5:30 PM Central Time, speaker at 6:15 PM Central Time).<br><br>'''[http://www.secure360.org/ Sign up for Secure360]''' being held May 11-12, 2010, with other pre-conference events on May 10.|mailinglistsite=https://lists.owasp.org/mailman/listinfo/owasp-twincities|emailarchives=https://lists.owasp.org/pipermail/owasp-twincities}} | |
| | | | |
| | + | We use [http://www.meetup.com/OWASP-MSP-Meetup/?scroll=true Meetup.com] for announcements and sometimes, depending on the event [https://www.eventbrite.com Eventbrite.com] for RSVP's to organize events and meetings. |
| | | | |
| − | == Sponsorship/Membership == | + | |mailinglistsite=https://lists.owasp.org/mailman/listinfo/owasp-twincities|emailarchives=https://lists.owasp.org/pipermail/owasp-twincities}} |
| − | <paypal>Minneapolis St Paul</paypal> | + | <br><br> |
| | | | |
| − | Or consider the value of [http://www.owasp.org/index.php/Membership Individual, Organization, or Accredited University Supporter membership] to contribute to better application security in the Minneapolis-Saint Paul area, surrounding Twin Cities metropolitan region, greater Minnesota, and the global software community.
| + | == Corporate Sponsors == |
| | + | <!-- |
| | + | <table border="0"> |
| | + | <tr><td> |
| | + | <div style="background:#FFFFFF;padding:10px;width:340px;"> [[Image:Advance it minnesota logo.png|120px|link=http://advanceitmn.org]] </div> |
| | + | </td> |
| | + | <td> |
| | + | <div style="background:#FFFFFF;padding:10px; width:290px"> [[Image:Best Buy logo.jpg|link=http://www.bestbuy.com/]]</div> |
| | + | </td> |
| | + | --> |
| | + | <table border="0"> |
| | + | <tr> |
| | + | <td> |
| | + | <div style="background:#FFFFFF;padding:10px; width:290px"> FICO</div> |
| | + | </td> |
| | + | </tr> |
| | + | <table> |
| | + | <br> |
| | | | |
| | + | = Upcoming Meetings and Events = |
| | + | == OWASP-MSP Upcoming Chapter Meeting == |
| | | | |
| − | == Platinum Sponsors == | + | '''When:''' Reference [http://www.meetup.com/OWASP-MSP-Meetup/?scroll=true Meetup.com] for announcements. |
| | + | <!-- |
| | + | '''Where:''' |
| | + | Ewald Conference Center |
| | + | 1000 Westgate Drive #252 |
| | + | St. Paul, MN |
| | | | |
| − | [[Image:Best_Buy_logo.jpg|link=http://www.bestbuy.com/]] [[Image:advance_it_minnesota_logo.png||120px|link=http://www.strategicit.org/]]
| + | '''Presentation:''' Red Team |
| | | | |
| | + | '''Presenter:''' Ryan Manship |
| | + | --> |
| | + | <!-- |
| | + | '''Not sure if you are a current member?''' [https://docs.google.com/spreadsheets/d/142z7ByBQYMrszB1CGD30UC_XHpVX6zwvrkOgse5VO1Y/edit?usp=sharing Member Directory] |
| | + | --> |
| | + | <!-- |
| | + | '''REGISTRATION LINK:''' [https://www.eventbrite.com/e/owasp-msp-september-2016-chapter-meeting-tickets-27533084196 Eventbrite Signup Link for Event] |
| | + | --> |
| | + | <!-- |
| | + | == OWASP-MSP Upcoming Chapter meeting == |
| | | | |
| − | The OWASP MSP chapter is very thankful for
| |
| | | | |
| − | * generous financial support from [[Membership#Categories_of_Membership_.26_Supporters|Organization Supporter]] and Local Chapter Supporter '''[http://www.bestbuy.com/ Best Buy]'''.
| + | '''When:''' Wednesday, May 11th @ 6:00 - 8:00 PM |
| − | * reliable monthly meeting locations from Local Chapter Supporter '''[http://www.strategicit.org/ Advance IT Minnesota (Center for Strategic Information Technology and Security (MnSCU))]'''.
| |
| | | | |
| | + | '''Title:''' Evil Twin Attack with Wifiphisher |
| | | | |
| − | == Meetings and More ==
| + | This presentation will revolve around Wifiphisher, a security tool which automates the process of Evil Twin attack in order to mount fast phishing attacks against Wi-Fi networks. It is an open-source software that is heavily used by the wireless hacking community and comes with |
| | + | its community-built templates for different phishing scenarios. |
| | | | |
| − | ==== Upcoming Meetings and Events ====
| |
| | | | |
| − | === Monday, April 26, 2010 - David M. N. Bryan<br>Do VLANs allow for good application security? ===
| + | Common defenses for reducing the associated risk will also be discussed, including Wireless Intrusion Detection & Prevention Systems, 802.1X Port Access Control for robust mutual authentication and security awareness |
| | + | training. |
| | | | |
| − | '''[http://owaspmsp20100426chaptermeeting.eventbrite.com/ REGISTER NOW]''' for the Monday, April 26, 2010 local chapter meeting - '''David M. N. Bryan - Do VLANs allow for good application security?''' (room opens at 5:30 PM Central Time, speaker at 6:15 PM Central Time). | + | '''Speaker:''' George Chatzisofroniou (@_sophron) is a security engineer at CENSUS S.A. His research interests include cryptography, Wi-Fi hacking, network security and web security. He is the lead developer of the popular open-source wireless hacking tool "Wifiphisher". |
| | | | |
| − | '''Date:''' Monday, April 26th, 2010 | + | '''Location:''' Best Buy - Headquarters 7601 Penn Ave S, Richfield, MN (Use the Visitor parking off Penn and the Visitor Entrance) |
| | | | |
| − | '''Location / Venue Sponsor:''' US Bank, 2751 Shepard Rd, Saint Paul MN 55116 | + | '''RSVP:''' |
| | | | |
| − | '''Map and Directions:''' [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=2751+Shepard+Rd,+Saint+Paul+MN+55116&sll=37.0625,-95.677068&sspn=32.939885,87.714844&ie=UTF8&hq=&hnear=2751+Shepard+Rd,+St+Paul,+Ramsey,+Minnesota+55116&z=16 Google Maps]
| + | at Eventbrite [http://bit.ly/1TaCKb8] |
| | | | |
| − | '''Agenda:''' | + | '''Agenda:''' <br/> |
| | + | 5:30 PM Room opens for networking and CPE signup<br/> |
| | + | 6:00 PM Welcome: OWASP chapter update and Chapter Presentation<br/> |
| | + | 7:45 PM Wrap-up<br/> |
| | + | --> |
| | + | <!-- Thank You OWASP Chapter Budget for sponsoring our meeting location. --> |
| | | | |
| − | '''5:30 PM ''' Room opens for networking | + | <!-- '''Follow''' OWASP MSP on your favorite social media sites: |
| | | | |
| − | '''6:00 PM''' Welcome: OWASP chapter updates
| |
| − |
| |
| − | '''6:15 PM''' '''David M. N. Bryan - Do VLANs allow for good application security?'''
| |
| − |
| |
| − | '''8:00 PM''' Upcoming events reminder and meeting wrap-up
| |
| − |
| |
| − | '''Thank You:''' US Bank for sponsoring our meeting location. Please contact Lorna at [mailto:[email protected] [email protected]] or 651-338-0243 if you would like to sponsor a meeting or meeting location for an upcoming OWASP meeting. | |
| − |
| |
| − | '''Speaker Topic:'''
| |
| − |
| |
| − | Virtual Local Area Networks (VLANs) are not a new concept, and can help any organization better control network access. David will present some of the previous issues identified, what was the root cause, and how these have been fixed in current technology. In addition he will talk about how this can help to enhance security in your environment, and what controls must be in place in order to implement such an environment. He will also touch on how this can complicate your application environment, but improve overall security.
| |
| − |
| |
| − | David will touch on the controls that need to be reviewed and audited when working with VMware, VLANs, and web applications to ensure that these networks are secure, and what to look for to potentially pass audit criteria. He will also talk about where and how these controls have been implemented in order to protect thousands of users while accessing one of the most hostile networks in the world.
| |
| − |
| |
| − | '''Speaker Bio:'''
| |
| − |
| |
| − | David has over 9 years of computer security experience, including consulting, engineering, and administration. He has performed security assessment projects for health care, nuclear, manufacturing, pharmaceutical, banking and educational sectors. As an active participant in the information security community, he volunteers at [http://www.defcon.org/ DEFCON] where he designs and implements the Firewall and Network for what is said to be the [http://www.wired.com/threatlevel/2009/08/inside-the-worlds-most-hostile-network/ most hostile network environment in the world].
| |
| − |
| |
| − | He is also an active participant in the local Minneapolis security groups both as a board member of OWASP MSP and [http://www.dc612.org/ DC612]. His roots and experience come from working for a large enterprise bank, and designing and managing enterprise security systems. In the more recent years he has been working as an Information Security Consultant to review the security and architecture of information computing environments.
| |
| − |
| |
| − | === Stay Updated ===
| |
| − |
| |
| − | '''[https://lists.owasp.org/mailman/listinfo/owasp-twincities Click here to join the local chapter mailing list]'''
| |
| − |
| |
| − | '''Follow''' OWASP MSP on your favorite social media sites:
| |
| | | | |
| | [[Image:Linkedin_mini.png|link=http://www.linkedin.com/groupInvitation?groupID=2184116]] | | [[Image:Linkedin_mini.png|link=http://www.linkedin.com/groupInvitation?groupID=2184116]] |
| − | [[Image:Twitter_mini.png|link=http://twitter.com/owaspmsp]] [[Image:Facebook_mini.png|link=http://www.facebook.com/pages/OWASP-Minneapolis-St-Paul-OWASP-MSP-OWASPMSP/113583361381]] [[Image:Digg_mini.png|link=http://digg.com/users/owaspmsp]] [[Image:Delicious_mini.png|link=http://delicious.com/owaspmsp]] [[Image:Reddit_mini.png|link=http://www.reddit.com/user/owaspmsp]] [[Image:Myspace_mini.png|link=http://www.myspace.com/owaspmsp]] | + | [[Image:Twitter_mini.png|link=http://twitter.com/owaspmsp]] [[Image:Facebook_mini.png|link=http://www.facebook.com/pages/OWASP-Minneapolis-St-Paul-OWASP-MSP-OWASPMSP/113583361381]] |
| − | | |
| | | | |
| − | '''Share''' OWASP MSP on your favorite social media sites:
| + | <br> --> |
| | | | |
| − | [[Image:Linkedin_mini.png|link=http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page&summary=Official%20OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20home%20page.%20Video%2C%20audio%2C%20slides%2C%20and%20other%20information%20on%20previous%20and%20upcoming%20chapter%20meetings%2C%20events%2C%20and%20conferences.&source=OWASPMSP]]
| |
| − | [[Image:Twitter_mini.png|link=http://twitter.com/home?status=Checking%20out%20OWASP%20MSP%20at%20http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul.]] [[Image:Facebook_mini.png|link=http://www.facebook.com/sharer.php?u=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&t=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Digg_mini.png|link=http://digg.com/submit?phase=2&url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page&bodytext=Official%20OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20home%20page.%20Video%2C%20audio%2C%20slides%2C%20and%20other%20information%20on%20previous%20and%20upcoming%20chapter%20meetings%2C%20events%2C%20and%20conferences.]] [[Image:Delicious_mini.png|link=http://del.icio.us/post?url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Reddit_mini.png|link=http://reddit.com/submit?url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Myspace_mini.png|link=http://www.myspace.com/Modules/PostTo/Pages/?l=1&u=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&t=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]]
| |
| | | | |
| − | === Secure360 ===
| |
| − | [http://www.secure360.org/ Secure360] is an annual
| |
| − | conference providing high quality educational sessions and networking
| |
| − | opportunities while working to identify developing trends in risk
| |
| − | management, physical security, governance, audit, information security,
| |
| − | contingency planning and human capital.
| |
| | | | |
| − | === DC612 Meetings === | + | <!-- = Media and Documents = --> |
| − | DC612 meets the 2nd Thursday of the month.<br>
| + | <!-- |
| − | http://www.dc612.org/ | + | Videos of past meetings are available at the [[OWASPMSP Videos]] node, the [http://vimeo.com/channels/owaspmsp OWASP MSP Vimeo Channel], and [http://vimeo.com/owasp http://vimeo.com/owasp]. |
| | + | --> |
| | + | <!-- === Content === --> |
| | | | |
| − | ==== Video/Audio/Slides/Handouts ====
| |
| | | | |
| − | Videos of several past meetings are available at [[OWASPMSP_Videos]] and [http://vimeo.com/channels/owaspmsp OWASP MSP Vimeo Channel]
| |
| | | | |
| − | === Most Recent Content ===
| + | <!-- You can find our Chapter Videos at https://vimeo.com/user56799697 --> |
| − | Mike Craigue - Enterprise Application Security Practices: Real-world Tips and Techniques - OWASP (MSP) - 22 February 2010 (82 minutes) [http://vimeo.com/10514707 Vimeo Video] | [[Media:OWASP_template_mjc_MN_2010_02_22_v3.pdf|PDF]]
| |
| | | | |
| − | Matt Tesauro - OWASP Live CD - OWASP (MSP) - 16 November 2010 (69 minutes) [http://vimeo.com/8866009 Vimeo Video]
| |
| | | | |
| − | Chris Nickerson - Red Team Testing - OWASP (MSP) - 5 October 2009 (78 Minutes) [http://vimeo.com/groups/owaspmsp/videos/7593801 Vimeo Video]
| |
| | | | |
| − | Ryan Barnett - The Web Hacking Incidents Database (WHID), Bi-Annual Report 2009 (January - June) - OWASP (MSP) - 21 September 2009 (81 minutes) [http://vimeo.com/groups/owaspmsp/videos/7093235 Vimeo Video] | [[Media:The Web Hacking Incidents Database - 2009 Bi-Annual Report.pdf|PDF]]
| + | <!-- |
| | + | Igor Matlin - Warning: Security Storms are Brewing in Your JavaScript - OWASP (MSP) - May 2015 |
| | | | |
| − | [[OWASP Minneapolis St Paul 2009_Conference | OWASP Minneapolis-St. Paul 2009 Half-day Conference - 24 August 2009]] - '''[http://vimeo.com/channels/owaspmsp Watch the video at Vimeo]'''
| + | Gene Kim - Rugged DevOps - OWASP (MSP) - 7 November 2011 (61 minutes) [http://vimeo.com/36342207 Vimeo Video] |
| | | | |
| − | Robert Sullivan - Open This First: A job-oriented guide to software security resources - OWASP (MSP) - 27 July 2009 (68 minutes) [http://www.comotheory.com/owasp/20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.mp3 MP3] | [[Media:20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.pdf|PDF]] | [http://www.comotheory.com/owasp/20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.mp4 MP4...please right click and save] | [http://mspsullivan.home.mchsi.com More Material]
| + | Michael Coates - Attack Aware Applications (AppSensor) - OWASP (MSP) - 18 April 2011 (75 minutes) [https://owasp.webex.com/owasp/ldr.php?AT=pb&SP=MC&rID=87764002&rKey=14191b8f8c73dabc WebEx Replay] |
| | | | |
| − | ==== Previous Events ====
| + | Dan Cornell - Smart Phones, Dumb Apps - OWASP (MSP) - 7 December 2010 (93 minutes) [http://vimeo.com/17692646 Vimeo Video] |
| | | | |
| − | === OWASP Minneapolis-St. Paul 2009 Half Day Conference - August 24, 2009 ===
| + | Gunnar Peterson - Audit Logging Done Right - OWASP (MSP) - 20 September 2010 (55 minutes) [http://vimeo.com/15423426 Vimeo Video] |
| | | | |
| − | Thanks again for another year to all who joined us for [[OWASP Minneapolis St Paul 2009_Conference | an afternoon of information security presentations on August 24, 2009]] at the [http://www1.umn.edu/twincities/maps/StCen/StCen-map.html St. Paul Student Center] [http://www.spsc.umn.edu/about/directory/lower.php Auditorium/Theater] on the [http://www1.umn.edu/twincities/index.php University of Minnesota - Twin Cities] campus. [[OWASP Minneapolis St Paul 2009_Conference | Visit the conference page for a recap]] or '''[http://vimeo.com/channels/owaspmsp watch the video at Vimeo]'''.
| + | Dinis Cruz - How OWASP Works - OWASP (MSP) - 10 August 2010 (55 minutes) [http://vimeo.com/14343350 Vimeo Video] |
| | | | |
| − | === OWASP & FLOSS Application Security Mini-Conference 2008 - October 21, 2008 ===
| + | Dinis Cruz - O2 - OWASP (MSP) - 10 August 2010 (110 minutes) [http://vimeo.com/14392060 Vimeo Video] |
| | + | --> |
| | | | |
| − | Thanks to all who joined us on October 21, 2008 for a [[OWASP_Minneapolis_St_Paul_2008_Conference | mini conference in October 2008]] at University of Minnesota's Saint Paul campus. Our first conference was a great success, with around 150 people attending! We were fortunate to have even higher attendance in 2009.
| + | = Security Associates = |
| | | | |
| − | ==== Chapter Leaders/Contacts ==== | + | === Secure360 === |
| − | | |
| | | | |
| − | '''Vice President:''' [mailto:lorna.alamri@owasp.org Lorna Alamri]
| + | [http://www.secure360.org/ Secure360] is an annual conference providing high quality educational sessions and networking opportunities while working to identify developing trends in risk management, physical security, governance, audit, information security, contingency planning and human capital. |
| | | | |
| − | '''Board Member and Former OWASP MSP President:''' [mailto:[email protected] Kuai Hinojosa] | + | === DC612 Meetings === |
| | | | |
| − | '''Board Member and Former OWASP MSP President:''' Robert Sullivan | + | DC612 meets the 2nd Thursday of the month.<br> [http://www.dc612.org/ http://www.dc612.org/] |
| | + | = Chapter Contacts = |
| | + | |
| | + | |
| | + | <!-- |
| | + | |
| | + | --> |
| | | | |
| − | '''Board Member:''' David Bryan
| + | <headertabs /> |
| | | | |
| − | '''Board Member:''' Joe T
| + | {{Social Media Links}} |
| − | <headertabs/>
| |
| | | | |
| | [[Category:Minnesota]] | | [[Category:Minnesota]] |
Welcome to the Minneapolis-St. Paul (OWASP MSP) chapter homepage. The chapter leadership Alex Bauert.
to this chapter or become a local chapter supporter.
Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? 
