- 1 Chapter Information
- 2 Membership
- 3 Chapter News
- 4 Active Projects
- 5 Past Events
- 5.1 OWASP Nettacker ICS Section Presented in KasperSky Industrial Cybersecurity
- 5.2 OWASP JoomScan at Blackhat Arsenal - USA 2018
- 5.3 OWASP Nettacker in OWASP Bay Area meetup 2018
- 5.4 OWASP JoomScan at Blackhat Arsenal - Asia 2018
- 5.5 OWASP Nettacker Accepted for Google Summer of Code 2018
- 5.6 OWASP Nettacker in OFFSECONF 2017
- 5.7 OWASP VBScan in OFFSECONF 2017
- 5.8 OWASP ZSC in OFFSECONF 2016
- 5.9 the First National Web Application Security Conference
- 5.10 4th Intl. Digital Media Fair
- 5.11 3rd Intl. Digital Media Fair
- 5.12 Software security vulnerabilities and defense
- 6 Resources
OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.
to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member?
OWASP Iran Chapter Meeting - (Details will be published soon)
Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member?
After months of exhaustive work, a new membership approach is available for Iranians. Check the membership tab.
The next chapter meeting would be in upcoming month. More information in the mailing list and here alter.
OWASP Nettacker project is created to automate information gathering, vulnerability scanning and eventually generating a report for networks, including services, bugs, vulnerabilities, misconfigurations, and other information. This software will utilize TCP SYN, ACK, ICMP and many other protocols in order to detect and bypass Firewall/IDS/IPS devices. By leveraging a unique method in OWASP Nettacker for discovering protected services and devices such as SCADA. It would make a competitive edge compared to other scanner making it one of the bests.
OWASP JoomScan Project
OWASP JoomScan (short for [Joom]la Vulnerability [Scan]ner) is an opensource project in Perl programming language to detect Joomla CMS vulnerabilities and analyses them.
OWASP VBScan Project
OWASP VBScan is an opensource project in Perl programming language to detect VBulletin CMS vulnerabilities and analyses them.
OWASP ZSC Project
OWASP ZSC is an open source software in python language which lets you generate customized shellcodes and convert scripts to an obfuscated script.
OWASP Nettacker ICS Section Presented in KasperSky Industrial Cybersecurity
OWASP JoomScan at Blackhat Arsenal - USA 2018
OWASP Nettacker in OWASP Bay Area meetup 2018
OWASP Nettacker Tutorial by at OWASP Bay Area meetup. Thanks to Vahid Behzadan for the presentation and OWASP Bay Area for hosting and sponsoring us. ( 1 )
OWASP JoomScan at Blackhat Arsenal - Asia 2018
OWASP JoomScan at OWASP Blackhat Arsenal - Singapore 2018. Thanks to Mohammad Reza Espargham, Esmaeil Rahimian for the presentation and Blackhat for hosting and sponsoring us. ( Experiences and Pictures ) ( 1 ) ( 1 )
OWASP Nettacker Accepted for Google Summer of Code 2018
OWASP Nettacker in OFFSECONF 2017
OWASP Nettacker was introduced in OFFSECONF 2017. (Experiences and Pictures)
OWASP VBScan in OFFSECONF 2017
OWASP VBScan presented in OFFSECONF 2017. Click here for additional information.
OWASP ZSC in OFFSECONF 2016
OWASP ZSC project presented in OFFSECONF 2016 K. N. Toosi University of Technology in Tehran (Experiences and Pictures)
the First National Web Application Security Conference
WASC.ir April 2011, Shahid Beheshti University
4th Intl. Digital Media Fair
Tehran, Great Mosalla of Imam Khomeini, October 7th-16th Two workshops by Abbas Naderi (aka) AbiusX :
- Common Web Security for People (including Social Engineering issues)
- Cryptography and Cryptanalysis
Both being held at October 9th
3rd Intl. Digital Media Fair
Tehran , Great Mosalla of Imam Khomeini, October 01st-8th
سومین نمایشگاه بینالمللی رسانههای دیجیتال، ۸ الی ۱۵، مصلی امام خمینی
Two security related presentations by Abbas Naderi (aka AbiusX):
- OWASP Top Ten in Persian for common web developers (2 Oct, 19-21 local time) (download link)
- General Security and Privacy for the public (3 Oct, 19-21 local time) (download link)
(Powerpoint and OpenOffice slides would be uploaded asap.)
- ۱۰ خطر اصلی در نرم افزارهای تحت وب - برای توسعه دهندگان وب
- امنیت عمومی در وب، حفاظت از اطلاعات شخصی برای عموم مردم
Attendance is free of charge.
Software security vulnerabilities and defense
seminar presented in YAZD University by Hamid kashfi (26 June 2008). (download link )
OWASP Top 10 Persian
(24/09/2009) Persian translation of OWASP TOP 10 Project is published by "Mitra Moosavi" and "Anahita Taheri". (download link)
لطفا پيشنهادات يا اصلاحات احتمالی را از طريق ايميل به تهيه کنندگان اين سند ارسال نماييد