This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Bristol"

From OWASP
Jump to: navigation, search
m
 
(30 intermediate revisions by the same user not shown)
Line 1: Line 1:
 
{{Chapter Template|chaptername=Bristol, UK|extra=Details of the chapter leaders are here [[Bristol_Chapter_Leaders]].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-bristol|emailarchives=http://lists.owasp.org/pipermail/owasp-bristol}}
 
{{Chapter Template|chaptername=Bristol, UK|extra=Details of the chapter leaders are here [[Bristol_Chapter_Leaders]].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-bristol|emailarchives=http://lists.owasp.org/pipermail/owasp-bristol}}
  
<paypal>Bristol UK</paypal>
 
 
Please contact [[Bristol Chapter Leaders]] if you have further questions.
 
Please contact [[Bristol Chapter Leaders]] if you have further questions.
 
==Chapter Sponsors==
 
==Chapter Sponsors==
Line 8: Line 7:
 
==Meeting Sponsors==
 
==Meeting Sponsors==
 
The following is the list of organisations who have generously provided us with space for Bristol chapter meetings:<br />
 
The following is the list of organisations who have generously provided us with space for Bristol chapter meetings:<br />
 +
 +
<table cellpadding="15" cellspacing="0">
 +
<tr>
 +
<td>[[Image:KPMG.png|link=http://www.kpmg.co.uk|alt=KPMG]]</td>
 +
<td>[[Image:just-eat.png|link=http://www.just-eat.co.uk|alt=Just Eat]]</td>
 +
<td>[[Image:250px-Cray_Inc._logo.png|link=http://www.cray.com|alt=Cray]]</td>
 +
</tr>
 +
<tr></tr>
 +
</table>
  
 
== Chapter Meetings ==
 
== Chapter Meetings ==
 +
Please see the [https://www.meetup.com/owasp-bristol/ Meetup] page for schedule and to register for meetings.
  
= Next Meeting =
+
==== '''2019''' ====
 
+
# [https://www.meetup.com/OWASP-Bristol/events/261525682/ 2019-11-14]
 
+
# [https://www.meetup.com/OWASP-Bristol/events/261525677/ 2019-09-12] "Finding Security Vulnerabilities"
'''Date''': Thursday, 17th March 2016, 19:00
+
# [https://www.meetup.com/OWASP-Bristol/events/260281462/ 2019-07-07]"Internet Stalking and Exploits with Scratch"
 
+
# [https://www.meetup.com/OWASP-Bristol/events/261458168/ 2019-06-06] "HiTag2 Crypto"
'''Location''': Cray - Broad Quay House, Broad Quay, Bristol BS1 4DJ, Bristol
+
# [https://www.meetup.com/OWASP-Bristol/events/257594082/ 2019-01-09]"Capture The Flag (CTF) Evening"
 
 
'''Registration''':  http://www.meetup.com/OWASP-Bristol/events/228380487/
 
 
 
'''Event sponsors''': Cray Supercomputers
 
 
 
'''Agenda''':
 
 
 
* 7:00pm - Social
 
* 7:25pm - OWASP updates / Speakers intro 
 
* 7:30pm - Presentation 1: Dinis Cruz - "New Era of Software with modern Application Security"
 
* 8:15pm - Presentation 2:  Scott Alexander-­Bown - "Android app security on a shoestring budget"
 
 
 
'''Presentation 1''': New Era of Software with modern Application Security
 
 
 
'''Abstract''': This presentation will start with an overview of the current state of Application Insecurity (with practical examples). This will make the attendees think twice about what is about to happen to their applications. The solution is to leverage a new generation of application security thinking such as: TDD, Docker, Test Automation, Static Analysis, cleaver Fuzzing, JIRA Risk workflows, Kanban, micro web services visualization, and ELK. These practices will not only make applications/software more secure/resilient, but it allow them to be developed in a much more efficient, cheaper and productive way.  
 
 
 
'''Bio''': Dinis is focused on creating Application Security teams and providing Application Security assurance across the SDL (from development, to operations, to business processes, to board-level decisions). His focus is in the alignment of the business’s risk appetite with the reality created by Applications developed internally, outsourced or purchased. He is also an active Developer and Application Security Engineer focused on how to develop secure applications. A key drive is on 'Automating Application Security Knowledge and Workflows' which is the main concept behind the OWASP O2 Platform.
 
 
 
 
 
 
 
'''Presentation 2''': Android app security on a shoestring budget
 
 
 
'''Abstract''': Even with all the time & budget in the world you can't make a completely bulletproof app, so how do you stand a chance with a real world app? Real world apps have limited budget, are short on time and the task priorities are often decided by the security oblivious client/project managers.
 
 
 
So what can we developers do to increase our app’s security and help protect our professional reputation? Where should we focus our app security effort? Isn’t security really difficult? and what gives us the biggest bang for our buck?
 
 
 
We will answer these questions and show that improving your security need not be technically challenging or time consuming. Also I’ll illustrate that it doesn’t necessarily need buy-in from stakeholders.
 
 
 
We’ll be using commercially viable open source libraries to level up your app’s network verification, tamper protection, device integrity checks and more! while keeping in mind a shoestring budget!
 
 
 
Many of the presented security protection techniques can be applied to iOS apps too, however the focus and examples will be Android.
 
 
 
'''Bio''': Scott is a Lead Android Developer and co-author of the Android Security Cookbook. Founder of SWmobile, a mobile developer focused meetup.com group with 650+ members.​ ​Creator of several open source Android security libraries.​ ​Enjoys​ ​spending time​ ​with his young family, running, Mexican food, Belgium beer and reading.
 
 
 
 
 
'''Date''': Friday, 20th May 2016, 18:00
 
 
 
'''Location''': KMPG
 
 
 
'''Registration''': 
 
 
 
'''Event sponsors''': KPMG
 
  
= Past Events  =
+
=== Past Events  ===
  
'''2016'''
+
==== '''2018''' ====
* [[2016-01-21-Bristol]]
+
# [https://www.meetup.com/OWASP-Bristol/events/254049342/ 2018-11-15] : Talk 1 Slides: [[media:OWASP-An_Android_Hacker%E2%80%99s_Toolbox.pptx|Android app hacker’s toolbox]]  /  Talk 2 Slides & Videos: [[media:Red_Team_OWASP_15-11-2018.pdf | Red Team Tactics part 2]] Video: [https://youtu.be/cwFXc5d6sXY Kerberos Phase2] [https://youtu.be/7Le44AFAtGc RedTeam Phase2 Service Account]
 +
# [https://www.meetup.com/OWASP-Bristol/events/254049195/ 2018-09-27] "Sharpen your Cyber SKills - CTF Event"
 +
# [https://www.meetup.com/OWASP-Bristol/events/247968102/ 2018-06-14] Slides: [[media:Red_Team_OWASP.pdf | Red Team Tactics against a Windows network]] video: https://www.youtube.com/watch?v=s-UcuRtD4_8
 +
# [https://www.meetup.com/OWASP-Bristol/events/245738650/ 2018-04-19]  Slides:  [[media:Application-Hacking-Though-The-Eyes-Of-An-Attacker.pdf |Application hacking through the eyes of an attacker]] /  [[media:Exploiting_Unknown_browsers.pdf|Exploiting unknown browsers and objects ]] 
 +
# [https://www.meetup.com/OWASP-Bristol/events/245738659/ 2018-02-15] Slides: [https://www.owasp.org/images/e/e0/OWASPBristol-2018-02-19-practical-password-cracking.pdf ‎Practical Password Cracking] / [https://www.owasp.org/images/8/89/OWASPBristol-2018-02-19-Blockchain-Security.pptx  Blockchain Security]
  
'''2015'''
+
==== '''2017''' ====
* [[2015-11-19-Bristol]]
+
# [https://www.meetup.com/OWASP-Bristol/events/244761832/ 2017-11-30] "Three Ways of Security” and Cookie Security - Myths and Misconceptions"
* [[2015-07-02-Bristol]]
+
# [https://www.meetup.com/OWASP-Bristol/events/241535079/ 2017-11-23]: A Corporate Phishing Trip & Modern Access Management
 +
# [https://www.meetup.com/OWASP-Bristol/events/240114497/ 2017-09-28]: "Website hacking and Threat Modelling"
 +
# [https://www.meetup.com/OWASP-Bristol/events/235736793/ 2017-06-22]: "IoT and Securing financial APIs" - [https://www.owasp.org/images/5/58/OWASP-Bristol-2017-June.pdf OWASP Resources]
 +
# [https://www.meetup.com/OWASP-Bristol/events/235736782/ 2017-04-20] "The path of secure software"
 +
# [https://www.meetup.com/OWASP-Bristol/events/235736769/ 2017-03-09]"OWASP Top 10 Proactive Controls"
  
 +
==== '''2016''' ====
 +
# 2016-11-17-Bristol - Full details at http://meetu.ps/2Xtpll
 +
# [[2016-09-15-Bristol]] - Full details at http://meetu.ps/2Xtpgw
 +
# [[2016-07-21-Bristol]] - Full details at http://meetu.ps/2Xtp9Y
 +
# [[2016-05-20-Bristol]] - Full details at http://www.meetup.com/OWASP-Bristol/events/229465685/
 +
# [[2016-03-17-Bristol]] - Full details at http://www.meetup.com/OWASP-Bristol/events/228380487/
 +
# [[2016-01-21-Bristol]] - Full details at http://www.meetup.com/OWASP-Bristol/events/227419895/
  
 +
==== '''2015''' ====
 +
# [[2015-11-19-Bristol]]
 +
# [[2015-07-02-Bristol]]
  
 
= Sponsorship  =
 
= Sponsorship  =
Line 84: Line 69:
 
If you are interested in sponsoring the chapter then please get in touch with one of the [[Bristol Chapter Leaders]].
 
If you are interested in sponsoring the chapter then please get in touch with one of the [[Bristol Chapter Leaders]].
  
__NOTOC__ <headertabs />
+
__NOTOC__ <headertabs></headertabs>
  
 
=='''Call for Presentations'''==
 
=='''Call for Presentations'''==

Latest revision as of 20:20, 30 September 2019

OWASP Bristol, UK

Welcome to the Bristol, UK chapter homepage. Details of the chapter leaders are here Bristol_Chapter_Leaders.


Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


Please contact Bristol Chapter Leaders if you have further questions.

Chapter Sponsors

The following are the list of OWASP Corporate Members who have generously aligned themselves with the Bristol chapter, therefore contributing funds to our chapter:

Meeting Sponsors

The following is the list of organisations who have generously provided us with space for Bristol chapter meetings:

KPMG Just Eat Cray

Chapter Meetings

Please see the Meetup page for schedule and to register for meetings.

2019

  1. 2019-11-14
  2. 2019-09-12 "Finding Security Vulnerabilities"
  3. 2019-07-07"Internet Stalking and Exploits with Scratch"
  4. 2019-06-06 "HiTag2 Crypto"
  5. 2019-01-09"Capture The Flag (CTF) Evening"

Past Events

2018

  1. 2018-11-15 : Talk 1 Slides: Android app hacker’s toolbox / Talk 2 Slides & Videos: Red Team Tactics part 2 Video: Kerberos Phase2 RedTeam Phase2 Service Account
  2. 2018-09-27 "Sharpen your Cyber SKills - CTF Event"
  3. 2018-06-14 Slides: Red Team Tactics against a Windows network video: https://www.youtube.com/watch?v=s-UcuRtD4_8
  4. 2018-04-19 Slides: Application hacking through the eyes of an attacker / Exploiting unknown browsers and objects
  5. 2018-02-15 Slides: ‎Practical Password Cracking / Blockchain Security

2017

  1. 2017-11-30 "Three Ways of Security” and Cookie Security - Myths and Misconceptions"
  2. 2017-11-23: A Corporate Phishing Trip & Modern Access Management
  3. 2017-09-28: "Website hacking and Threat Modelling"
  4. 2017-06-22: "IoT and Securing financial APIs" - OWASP Resources
  5. 2017-04-20 "The path of secure software"
  6. 2017-03-09"OWASP Top 10 Proactive Controls"

2016

  1. 2016-11-17-Bristol - Full details at http://meetu.ps/2Xtpll
  2. 2016-09-15-Bristol - Full details at http://meetu.ps/2Xtpgw
  3. 2016-07-21-Bristol - Full details at http://meetu.ps/2Xtp9Y
  4. 2016-05-20-Bristol - Full details at http://www.meetup.com/OWASP-Bristol/events/229465685/
  5. 2016-03-17-Bristol - Full details at http://www.meetup.com/OWASP-Bristol/events/228380487/
  6. 2016-01-21-Bristol - Full details at http://www.meetup.com/OWASP-Bristol/events/227419895/

2015

  1. 2015-11-19-Bristol
  2. 2015-07-02-Bristol

Sponsorship

We are looking for organizations to sponsor the Bristol chapter.

You can sponsor the chapter for one year at the following levels:

  • £2000 Platinum
  • £1000 Gold
  • £500 Silver


If you are interested in sponsoring the chapter then please get in touch with one of the Bristol Chapter Leaders.

Call for Presentations

OWASP Bristol (UK) Chapter Call For Presentation

As a speaker please review the OWASP speaker agreement

Stay in contact:

Meetup-logo-2x.png Join the list.png Follow-us-on-twitter.png
Retrieved from "https://wiki.owasp.org/index.php?title=Bristol&oldid=255088"