This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit


Revision as of 18:32, 15 July 2011 by Jekist (talk | contribs) (Goals & Objectives)

Jump to: navigation, search

OWASP Buffalo

Welcome to the Buffalo chapter homepage. The chapter leader is James Kist


OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.


Btn donate SM.gif to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG

Local News


The Buffalo NY chapter was formed in August 2004. We meet 4 times a year for 1 to 2 hours per meeting and discuss topics related to web application security.

Call For Presentations

The Buffalo Chapter of the Open Web Application Security Project (OWASP) is pleased to announce this


The Buffalo OWASP Chapter is currently looking for individuals from research, academia and industry to give presentations on various topics related to application security. OWASP is an open community dedicated to enabling organizations to conceive, develop, acquire, operate, and maintain applications that can be trusted. All of the OWASP tools, documents, forums, and chapters are free and open to anyone interested in improving application security. We advocate approaching application security as a people, process, and technology problem because the most effective approaches to application security include improvements in all of these areas. We can be found at

Proposed topics

Examples of types of talks we are looking for include but are not limited to:
1. Web Application Security
2. Mobile Application Security
3. Software Forensics including but not limited to: Application, Physical memory forensics, solid state disk forensics, network forensics
4. Software topics related to Cyber Crime
5. Cloud Security / Assessing Cloud Security and its software (including virtualization)
6. Reversing Engineering Malware
7. Software Root Kits
8. Legal and privacy issues related to software
9. Any other topic related with application security

Rules for presentations:

1. Presentations should be limited to 45 minutes, including Q & A.
2. Presentations must be vendor-neutral - absolutely no advertising will be allowed
3. Vendors will be allowed to present, but must refrain from delivering a sales pitch
4. The presentations must include facts and objective opinions, but must not be an attempt to persuade the audience to purchase specific products or services
5. Presentations should include demos and other interactive content to keep the audience engaged

Proposals should consist of the following information:

1. Presenter name, email address, phone, city & state.
2. Employer and/or affiliations.
3. Brief biography, including any significant presentation and educational experience/background.
4. Topic synopsis, proposed presentation title, and a one paragraph description
5. A description of the materials that will be made available to the audience (Powerpoint slides, PDF's, etc.)
6. Optionally, any samples of prepared material or outlines ready.

Please send all responses to [email protected]

Goals & Objectives

It is our goal to freely distribute information related specifically to web application security. We want to ensure our members receive "free, professional-quality, open-source documentation, tools, and standards", as quoted directly from the main OWASP site. Participation is free and open to all. All are encouraged to participate.

Local Mailing List

You can sign up for the local mailing list. This list hosts discussions about chapter activity, planning for meetings and discussions about past and future presentations. To subscribe, go to and supply your email address.


You can participate by either signing up for the mailing list or just show up for the next meeting!

Chapter Meetings

Next Chapter Meeting

The next Buffalo chapter meeting is currently being planned. Stay tuned for details!


The Buffalo OWASP chapter is currently looking for a new home. If you have a facility that can house our meetings (about 20 people), please contact us and let us know. Thanks!

Other Local IT Organizations


ISSA Rochester

Rochester, NY Defcon Group

infoTech Niagara

WNY .NET Users Group

ISSA Buffalo Niagara

WNYSIP - Western New York Society for Information Professionals

WNY Ruby Users Group

Buffalo OWASP Chapter Leaders

President James Kist

For information on how to join the chapter or if you would like to attend a meeting or even speak at a meeting, please send one of the officers an email. If you have any suggestions for meeting topics, please send an email with your ideas.