Difference between revisions of "IBWAS10 Training"

Revision as of 20:28, 23 November 2010

COURSE

Part of OWASP Ibero-American Web Application Security Conference (IBWAS'10)

Overview & Goal

Apart from OWASP's Top 10, most OWASP Projects are not widely used and understood. In most cases this is not due to lack of quality and usefulness of those Document & Tool projects, but due to a lack of understanding of where they fit in an Enterprise's security ecosystem or in the Web Application Development Life-cycle.

This course aims to change that by providing a selection of mature and enterprise ready projects together with practical examples of how to use them.

If you are interested in participating in the hands on portion of the course, please bring a laptop.

Date

Venue & Directions

December 16, 2010

Price & Registration

This Course is FREE for OWASP Members. Registration is mandatory. If you are not an OWASP member as of yet please consider becoming one - $50/USD 12 month term for individual supporters.
Register Now!	OWASP Membership (sign now)

COURSE'S MODULES DETAILS
Time	Module	Trainer	Presentation	Overview & Goal
09h00 (30m)	Guided tour of OWASP Projects	Dinis Cruz (OWASP Board)	Tour of OWASP’s projects	See details and Trainer's notes
09h30 (60m)	OWASP Top 10	John Wilander (OWASP Sweden Chapter Leader)	OWASP Top 10 2010 from a Developer's Perspective	See details and Trainer's notes
10h30 (15m)	Coffee Break
10h45 (60m)	Threat Risk Modeling	Martin Knobloch (Education Committee)	Threat Modeling – how to do it	See details and Trainer's notes
11h45 (60m)	OWASP Secure Coding Practices - Quick Reference Guide	Miguel Almeida (Portuguese Local Chapter)	OWASP Secure Coding Practices - Quick Reference Guide	See details and Trainer's notes
12h45 (60m)	Lunch
14h00 (150m)	Implementation of Enigform for Wordpress	Arturo 'Buanzo' Busleiman (Project Leader)	Wordpress Plugin for Enigform Authentication - Definitive Guide	See details and Trainer's notes
16h30 (15m)	Coffee Break
16h45 (45m)	OWASP O2 Platform	Dinis Cruz (Project Leader)	What is the OWASP O2 Platform	See details and Trainer's notes
17h00 (60m)	OWASP Testing Guide	Martin Knobloch (Education Committee)	Application Security Using the Testing Guide	See details and Trainer's notes
18h00 (45m)	OWASP Webslayer Project	Christian Martorella (Project Leader)	Bruteforcing Web Applications - 2010: still bruteforcing	See details and Trainer's notes

@@ Line 49: / Line 49: @@
 | Module_Name = Threat Risk Modeling
 | Module_Link = http://www.owasp.org/index.php/Threat_Risk_Modeling
-| Trainer = [[user:Knoblochmartin|Martin Knobloch]]
+| Trainer = [[user:Knoblochmartin|Martin Knobloch (Education Committee)]]
 | Presentation_Name = Threat Modeling – how to do it
 | Presentation_Link = http://www.owasp.org/index.php/Threat_Risk_Modeling
@@ Line 95: / Line 95: @@
 | Module_Name = OWASP Testing Guide
 | Module_Link = http://www.owasp.org/index.php/Category:OWASP_Testing_Project
-| Trainer = [[user:Knoblochmartin|Martin Knobloch]]
+| Trainer = [[user:Knoblochmartin|Martin Knobloch (Education Committee)]]
 | Presentation_Name = Application Security Using the Testing Guide
 | Presentation_Link =  http://www.owasp.org/images/5/56/OWASP_Testing_Guide_v3.pdf
@@ Line 104: / Line 104: @@
 | Module_Name = OWASP Webslayer Project
 | Module_Link = http://www.owasp.org/index.php/Category:OWASP_Webslayer_Project
-| Trainer = [[user:Cmartorella|Christian Martorella]]
+| Trainer = [[user:Cmartorella|Christian Martorella (Project Leader)]]
 | Presentation_Name = Bruteforcing Web Applications - 2010: still bruteforcing
 | Presentation_Link = http://www.owasp.org/index.php/OWASP/Training/OWASP_Webslayer_Project