This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Italy OWASP Day 2018"
m (Tag: Visual edit) |
(Agenda) (Tag: Visual edit) |
||
Line 15: | Line 15: | ||
When: June 16th, 2018 | When: June 16th, 2018 | ||
− | == | + | = Agenda = |
− | + | ||
+ | === '''9.00 – 10:00''' <time>–</time> Registration === | ||
+ | |||
+ | === '''10.00 – 10:10''' <time>–</time> Opening === | ||
+ | |||
+ | === <time>'''10:10 – 11:50''' – Red Teaming</time> === | ||
+ | |||
+ | === '''Speaker''': James Hovous === | ||
+ | '''Title of Presentation''': “Catch me if you can – Artifacts left by red teamers” – English | ||
+ | |||
+ | === '''Speaker''': Assaf Carlsbad and Yarden Shafir – TBC === | ||
+ | '''Title of Presentation''': “Deep hooks: Monitoring native execution in WoW64 applications” – English | ||
+ | |||
+ | === '''<time>11:50 – 11:10</time>''' <time>–</time> Break === | ||
+ | |||
+ | === <time>'''12:10 – 13:30''' – Breaking and Building</time> === | ||
+ | |||
+ | === '''Speaker''': Cesare Pizzi === | ||
+ | '''Title of Presentation''': “Ardusploit – PoC of code injection on Arduino” – Italian/English | ||
+ | |||
+ | === '''Speaker''': Andrea Allievi === | ||
+ | '''Title of Presentation''': “Intel Txt, Measured Boot and the Windows Implementation” – Italian/English | ||
+ | |||
+ | === '''13:30 – 14:30''' <time>– Lunch</time> === | ||
+ | |||
+ | === <time>'''14:30 – 16:00''' – Cloud Security</time> === | ||
+ | |||
+ | === '''Speaker''': Marco Pacchiardo – TBC === | ||
+ | '''Title of Presentation''': “API Security” – Italian/English | ||
+ | |||
+ | === '''Speaker''': Venkatesh Sivakumar – TBC === | ||
+ | '''Title of Presentation''': “Unconventional vulnerabilities in Google Cloud Platform” – English | ||
+ | |||
+ | === <time>'''16:00 – 16:20''' –</time> Break === | ||
− | + | === <time>'''16:20 – 18:00''' – Windows Infrastructure Attack</time> === | |
− | ''' | + | === '''Speaker''': Andrea Pierini – TBC === |
+ | '''Title of Presentation''': | ||
− | + | “Tokens & User Rights – getting the highest privileges in Windows systems” – Italian | |
− | = | + | === '''Speakers''': Guglielmo Scaiola === |
− | + | '''Title of Presentation''': “AD, Mimikatz, ATA and (awe)some evasion techniques” – Italian | |
+ | === <time>'''18:00 – 18:20''' –</time> Conclusion === | ||
= Organization and goals = | = Organization and goals = |
Revision as of 13:25, 21 May 2018
WELCOME
Introduction
Welcome to the OWASP Day 2018 Italy Conference. Thanks to Prof. Stefano Zanero and the Bsides Milano team we are organizing a unique event that will be an OWASP Day together with the Bsides Milan Conference.
Address: Aula De Donato Piazza Leonardo Da Vinci 32, Milano, Politecnico di Milano
When: June 16th, 2018
9.00 – 10:00 Registration
10.00 – 10:10 Opening
Speaker: James Hovous
Title of Presentation: “Catch me if you can – Artifacts left by red teamers” – English
Speaker: Assaf Carlsbad and Yarden Shafir – TBC
Title of Presentation: “Deep hooks: Monitoring native execution in WoW64 applications” – English
Break
Speaker: Cesare Pizzi
Title of Presentation: “Ardusploit – PoC of code injection on Arduino” – Italian/English
Speaker: Andrea Allievi
Title of Presentation: “Intel Txt, Measured Boot and the Windows Implementation” – Italian/English
13:30 – 14:30
Speaker: Marco Pacchiardo – TBC
Title of Presentation: “API Security” – Italian/English
Speaker: Venkatesh Sivakumar – TBC
Title of Presentation: “Unconventional vulnerabilities in Google Cloud Platform” – English
Break
Speaker: Andrea Pierini – TBC
Title of Presentation:
“Tokens & User Rights – getting the highest privileges in Windows systems” – Italian
Speakers: Guglielmo Scaiola
Title of Presentation: “AD, Mimikatz, ATA and (awe)some evasion techniques” – Italian
Conclusion
- The event will show several points of discussion: we will present the state of the art of the Secure Software Initiatives and technical speeches about the new researches in Application Security.
- We will organize a round table regarding women in Application Security.
- As conclusion of the day, we organize a round table discussing the most interesting subjects came out during the event.
- Conference goal is creating a debate on which will be the evolution of the research for the Web Application Security, and how to start a secure software initiative.