This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "HackDub2012"

From OWASP
Jump to: navigation, search
Line 58: Line 58:
 
| style="border: 0px solid rgb(204, 204, 204); width: 100%; font-size: 95%; color: rgb(0, 0, 0);" | <!-- DON'T REMOVE ME, I'M STRUCTURAL -->
 
| style="border: 0px solid rgb(204, 204, 204); width: 100%; font-size: 95%; color: rgb(0, 0, 0);" | <!-- DON'T REMOVE ME, I'M STRUCTURAL -->
 
<!-- There be dragons here -->
 
<!-- There be dragons here -->
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [[Image:Appseclogo_small.png.png]]  
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [[Image:Appseclogo_small.png]]  
  
 
{|
 
{|

Revision as of 09:32, 30 June 2012


Hackdub2012-logo.png

Hackathon Dublin 2012

The Hackathon Dublin 2012, is a joint event by OWASP and Google Technical User Group (GTUG), that aims to raise awareness about application security, so that people and organizations can make informed decisions about true application security risks. Everyone is free to participate and all OWASP materials are available under a free and open software license.

The event is organized over two full days during the weekend of the 7th/8th July:

Day 1: Capture the Flag event running for an entire day and giving away prizes, etc for the winners. No previous security knowledge is required.

Day 2: Workshops around application security. Various topics will be covered: Secure Development, Code Review, Pentesting, Mobile Security, etc.

Who Should Attend the Hackathon Dublin 2012?

  • Application Developers
  • Application Testers and Quality Assurance
  • Application Project Management and Staff
  • Chief Information Officers, Chief Information Security Officers, Chief Technology Officers, Deputies, Associates and Staff
  • Chief Financial Officers, Auditors, and Staff Responsible for IT Security Oversight and Compliance
  • Security Managers and Staff
  • Executives, Managers, and Staff Responsible for IT Security Governance
  • IT Professionals Interesting in Improving IT Security
  • Anyone interested in learning about or promoting Web Application Security


REGISTER TO THE EVENT

Orange_registernow.png

PRIZES

  • During the Hackathon Dublin 2012 we will be giving away some amazing door prizes to some randomly selected attendees.

QUESTIONS





                                                                                                                              Appseclogo small.png

Use the #HackDub2012 hashtag for your tweets for Hackathon Dublin 2012 (What are hashtags?)

@AppSecIreland Twitter Feed (follow us on Twitter!) <twitter>498867302</twitter>

ACTIVITY
OWASP SECURITY SHEPHERD PROJECT
Description
  • Security Shepherd is a security aware in depth project. Designed with the aim of fostering security awareness among a varied skill-set demographic. This project enables users to learn or to improve upon existing manual penetration testing skills.
  • IMPORTANT: Attendees need to bring their own laptops in order to participate during the event!
  • Minimum Hardware Requirements are as follows:

- Windows/Macintosh/Linux computer with Java installed
- 1 Ghz or higher processor;
- 1 GB RAM minimum;
- Keyboard & Mouse;
- 1024x768 or higher display; and,
- Wireless Network connectivity

Time Venue
7th July 2012 Google Ireland Engineering offices - 1 Upper Grand Canal Street

Placemark on this map : http://goo.gl/ZGASA


Schedule
Time Activity Speaker Details
09:30 - 10:00 Registration & Welcome OWASP+GTUG Team
10:00 - 10:30 Introduction to Shepherd Project Mark Denihan & Juan Galiana Lara
10:30 - 12:30 Round 1
12:30 - 13:30 Lunch Break
13:30 - 14:00 Hints & Tips for Round 2 Mark Denihan & Juan Galiana Lara
14:00 - 17:00 Round 2
17:00 - closure Winners Announcement, Q&A, Demo OWASP + GTUG Team
ACTIVITY
SECURITY WORKSHOPS
Description
  • During the entire day, attendees will be able to participate in interactive workshops delivered by experts in the field on how to develop, review and test applications securely.
  • IMPORTANT: Attendees need to bring their own laptops in order to participate during the event!
  • Minimum Hardware Requirements are as follows:

- Windows/Macintosh/Linux computer with Java installed
- 1 Ghz or higher processor;
- 1 GB RAM minimum;
- Keyboard & Mouse;
- 1024x768 or higher display; and,
- Wireless Network connectivity

Time Venue
8th July 2012 Google Ireland Engineering offices - 1 Upper Grand Canal Street

Placemark on this map : http://goo.gl/ZGASA


Schedule
Time Activity Speaker Details
09:30 - 10:00 Registration & Welcome OWASP+GTUG Team
10:00 - 12:00 Ruby on Rails Secure Development (Slides) Thomas Pomfret, CTO MintDigital Rails makes it very easy to rapidly develop web applications, but doesn’t always make it so simple to deploy or secure them. Thomas is going to cover many common web security holes and show the best practices to secure them in your rails application. We'll look at them in abstract before getting hands on and doing it for real. Learnt through multiple high profile projects and penetration tests, Thomas will be presenting these in a practical 'real-world' way.
12:00 - 13:00 Lunch Break
13:00 - 14:30 Facebook Secure Coding Practices (Slides) Ryan Patterson, Facebook Engineer The talk is for programmers who want to write secure code. We'll go over 12 examples of security vulnerabilities and play spot-the-vulnerability with real examples that have been found in Facebook's source code.
14:30 - 14:45 Coffee Break
14:45 - 16:45 OWASP Shepherd Project Mark Denihan, Juan Galiana Lara A walk through of the OWASP Shepherd project showing how to solve the lab exercises and learning on how identify critical vulnerabilities in web applications.
16:45 - 17:00 Wrap Up & Closure