This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "BeNeLux OWASP Day 2010"
m |
m |
||
Line 119: | Line 119: | ||
|- | |- | ||
| style="background: none repeat scroll 0% 0% rgb(123, 138, 189); width: 15%; -moz-background-inline-policy: continuous;" | from - to | | style="background: none repeat scroll 0% 0% rgb(123, 138, 189); width: 15%; -moz-background-inline-policy: continuous;" | from - to | ||
− | | align=" | + | | align="left" style="background: none repeat scroll 0% 0% rgb(242, 242, 242); width: 75%; -moz-background-inline-policy: continuous;" colspan="2" | |
− | |||
+ | Agenda: | ||
+ | *'''Welcome and OWASP Update''' (by Eoin Keary, OWASP Board, E&Y and Seba Deleersnyder, OWASP Board, SAIT Zenitel) | ||
+ | *'''Combined Web and VoIP attacks''' (by Radu State, University of Luxembourg) | ||
+ | *'''Privacy of file sharing service''' (by N Nikiforakis, Katholieke Universiteit Leuven) | ||
+ | *'''Clickjacking: an empirical study with an automated testing/detection system''' (by Marco Balduzzi, Eurecom) | ||
+ | :Clickjacking recently received new media attentions: Thousands of Facebook users have fallen victims of a worm that uses clickjacking techniques to propagate. | ||
+ | :In a clickjacking attack, a malicious page is constructed (or a benign page is hijacked) to trick the user into performing unintended clicks that are advantageous for the attacker, such as propagating a web worm, stealing confidential information or abusing of the user session. | ||
+ | :However it is currently unclear to what extent clickjacking is being used by attackers in the wild and how significant the attack is for the security of Internet users. | ||
+ | :In this talk, we presents a solution we designed for studying the prevalence of clickjacking on the Internet and for detecting possible malicious pages in an automated fashion. We deployed our system over 10 distinct virtual machines to test more then a million unique web-pages in two months. From the analysis of our experimental results we discuss the clickjacking phenomenon and its future implications. | ||
+ | *'''tbd''' (by Walter Belgers, Madison Gurkha) | ||
+ | |||
+ | .. | ||
|} | |} | ||
+ | |||
==== Registration ==== | ==== Registration ==== |
Revision as of 14:50, 11 November 2010
Welcome
Confirmed Speakers:
Eoin Keary (OWASP Board, E&Y)
Sebastien Deleersnyder (OWASP Board, SAIT Zenitel)
Radu State (University of Luxembourg)
N Nikiforakis (Katholieke Universiteit Leuven)
Marco Balduzzi (Eurecom)
Walter Belgers (Madison Gurkha)
...
Download the conference flyer here.
All the presentations will be available for download in the agenda tab.
Training, December 1st
COURSE | |||
OWASP Projects and Resources you can use TODAY! | |||
Overview & Goal | |||
| |||
Date | Venue & Directions | ||
December 1, 2010 | Fontys Hogescholen, Den Dolech 2, Traverse 3.43, Eindhoven, The Netherlands
How to get here: | ||
Price & Registration | |||
|
COURSE'S MODULES DETAILS | |||||
Time | Module | Trainer | Presentation | Overview & Goal | |
09h00 (30m) | Guided tour of OWASP Projects | Tour of OWASP’s projects | See details and Trainer's notes
| ||
09h30 (45m) | [ ] | Martin Knobloch | [ Threat Modeling] | See details and Trainer's notes
| |
10h15 (15m) | Coffee Break |
| |||
10h30 (45m) | [ ] | Martin Knobloch | [ Testing] | See details and Trainer's notes
| |
11h15 (60m) | [ ] | Sebastien Deleersnyder | [ OT10 issues & remedies] | See details and Trainer's notes
| |
12h15 (45m) | [ ] | [ ] | See details and Trainer's notes
| ||
13h00 (60m) | Lunch |
| |||
14h00 (60m) | [ ] | Sebastien Deleersnyder | [ SAMM & SDLC] | See details and Trainer's notes |
Conference, December 2nd
Location - December 1st, 2010 | ||
---|---|---|
from - to | Registration | |
from - to |
Agenda:
.. |
Registration
The training day and the conference are free!
To support the OWASP organisation, consider to become a member, it's only US$50!
Check out the Membership page to find out more.
Venue
Eindhoven, The Netherlands (Den Dolech 2, Traverse 3.43)
Hotels nearby:
Organisation
The BeNeLux Day 2010 Program Committee:
- Martin Knobloch / Ferdinand Vroom(OWASP Netherlands)
- Bart De Win / Sebastien Deleersnyder (OWASP Belgium)
- Jocelyn Aubert / Andre Adelsbach (OWASP Luxembourg)
Sponsorship
Contact netherlands <at> owasp.org for sponsorship
<paypal>BeNeLux OWASP Day 2010</paypal>
Social Event
There will be a social conference evening at the eve of the first day, December 1stDetails to be posted soon!