This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Los Angeles"
Sarah Baso (talk | contribs) |
Sarah Baso (talk | contribs) |
||
| Line 23: | Line 23: | ||
==== Speaker: Brian Chess ==== | ==== Speaker: Brian Chess ==== | ||
| − | Brian is | + | Brian Chess is a founder of Fortify Software, an HP company, andserves as Fortify’s Chief Scientist, where his work focuses on practical methods for creating secure systems. His book, Secure Programming with Static Analysis, shows how static source code analysis is an indispensable tool for getting security right. |
| + | |||
| + | Brian holds a Ph.D. in computer engineering from the University of California at Santa Cruz, where he studied the application of static analysis to the problem of finding security-relevant defects in source code. Before settling on security, Brian spent a decade in Silicon Valley working at huge companies and small startups. He has done research on a broad set of topics, ranging from integrated circuit design all the way to delivering software as a service. | ||
Revision as of 02:15, 2 June 2011
Local News
Sign up for OWASP Los Angeles mailing list, very low volume and spam free.
https://lists.owasp.org/mailman/listinfo/owasp-losangeles
<paypal>Los Angeles</paypal>
Next Chapter Meeting: Wednesday, June 22, 2011 7:00 P.M. - 8:30 P.M.
Symantec
900 Corporate Pointe
Culver City, CA 90232
Please RSVP: http://owasp-june2011.eventbrite.com/
Topic: Gray, the new Black: Gray-Box Web Vulnerability Testing
Penetration testers who use only black-box tools are destined to lose to attackers who are willing to spend more time or effort looking for vulnerabilities. Defenders need to make use of one of the few natural advantages at their disposal: ready access to the system they’re trying to protect.
In this talk Brian will discuss gray-box vulnerability testing techniques that expose web application internals so that testers understand what an application is doing and can spot vulnerabilities faster. The tool observes the program while it executes. It reveals attack surface, points out vulnerable program behavior, opens up a code-level view of the application, and allows a tester to understand information flow inside the program.
Speaker: Brian Chess
Brian Chess is a founder of Fortify Software, an HP company, andserves as Fortify’s Chief Scientist, where his work focuses on practical methods for creating secure systems. His book, Secure Programming with Static Analysis, shows how static source code analysis is an indispensable tool for getting security right.
Brian holds a Ph.D. in computer engineering from the University of California at Santa Cruz, where he studied the application of static analysis to the problem of finding security-relevant defects in source code. Before settling on security, Brian spent a decade in Silicon Valley working at huge companies and small startups. He has done research on a broad set of topics, ranging from integrated circuit design all the way to delivering software as a service.
Would you like to speak at an OWASP Los Angeles Meeting?
Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to Tin Zaw. When we accept your talk, it will be required to use the Powerpoint OWASP Template.
Archives of Previous Meetings
A list of previous presentations conducted at the Los Angeles Chapter can be found here.
Los Angeles Chapter
- Tin Zaw -- Chapter Leader and Chair
- Cassio Goldschmidt -- Board Member
- Richard Greenberg -- Board Member
- Sarah Baso -- Chapter Administrator
The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!
Check out the videos: http://vimeo.com/user4863863/videos
