This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Italy OWASP Day Udine 2019"

From OWASP
Jump to: navigation, search
 
Line 16: Line 16:
 
<center>
 
<center>
 
<gallery>
 
<gallery>
Morana2020.jpg|Marco Morana: [https://drive.google.com/open?id=1aqxMwHjjCQgHPsUWdCQ9omiT45QjJlDR "Introduction to Threat Modeling and the Process for Attack Simulation and Threat Analysis"]
+
Morana2020.jpg|Marco Morana: [https://drive.google.com/open?id=1Ak8lne8_Fzw9NozjS0GKF2WIhMU5pBhm "Introduction to Threat Modeling and the Process for Attack Simulation and Threat Analysis"]
 
Calligaris2020.jpg|David Calligaris: [https://drive.google.com/open?id=1-s81HxzTSjTh8IPZvyexMsfEFH2LCy1C "SSRF present and future"]
 
Calligaris2020.jpg|David Calligaris: [https://drive.google.com/open?id=1-s81HxzTSjTh8IPZvyexMsfEFH2LCy1C "SSRF present and future"]
 
Calzavara2020.jpg|Stefano Calzavara: [https://drive.google.com/open?id=1-skFH-BeyMiMOF-7ZxR1LJ3nDL5CFVIH "Testing for integrity flaws in web sessions"]
 
Calzavara2020.jpg|Stefano Calzavara: [https://drive.google.com/open?id=1-skFH-BeyMiMOF-7ZxR1LJ3nDL5CFVIH "Testing for integrity flaws in web sessions"]

Latest revision as of 09:05, 8 January 2020

Back to the Italian Chapter

Screen Shot 2019-01-31 at 10.23.04 PM.png

Following on from the great successes of last year OWASP Italy day conference the 2019 OWASP Italy conference has been held at the University of Udine on December 14th, 2019.

The Open Web Application Security Project, or OWASP, is an international non-profit organization dedicated to web and application security. OWASP is organized as an online community that produces freely-available articles, methodologies, documentation, tools, and technologies in the field of web application security. Many standards, books, tools, and organizations reference the Top OWASP 10 project, including MITRE, PCI DSS, the Defense Information Systems Agency (DISA-STIG), the United States Federal Trade Commission (FTC) and many more. The OWASP Testing Guide includes a "best practice" penetration testing framework that users can implement in their own organizations and a "low level" penetration testing guide that describes techniques for testing most common web application and web service security issues.

The University of Udine The University of Udine is a young and dynamic university, whose mission, since its foundation in 1978, has been to promote higher education through generation of new ideas and worldwide connections. It is situated in Udine, a town in Friuli Venezia Giulia Region, which historically has been a meeting place and crossroads of different worlds and cultures. The University of Udine is ranked eighth among Universities in Italy in terms of education quality and research and it has just celebrated its 40th birthday last year.

OWASP Italy Day is a one-day conference focused on web application and software security, application security testing tools and technologies. This year special topic of interest is threat modeling.

This conference provided a unique opportunity to learn about application security topics and to network with application security professionals/managers, software engineers, software quality engineers/testers and computer science students.

Presentations

Agenda

9:00h"Registration of the participants"
9:30h"Welcome and opening of the works"
Prof. Marino Miculan,- Università degli Studi di Udine, Matteo Meucci OWASP Italy
9:45h"Keynote: Introduction to Threat Modeling and the Process for Attack SImulation and Threat Analysis"
Marco Morana, SVP Cyber Security Citi
10:45h"SSRF present and future"
David Calligaris, Director of Vulnerability Research & Security Testing Automation Huawei Technologies GMBH
11.30h"Coffee Break"

12.15h"Testing for integrity flaws in web sessions"
Stefano Calzavara, Assistant professor - Università Ca' Foscari Venezia
13:00h"End of the OWASP day"