Italy OWASP Day Udine 2019
The Open Web Application Security Project, or OWASP, is an international non-profit organization dedicated to web and application security. OWASP is organized as an online community that produces freely-available articles, methodologies, documentation, tools, and technologies in the field of web application security. Many standards, books, tools, and organizations reference the Top OWASP 10 project, including MITRE, PCI DSS, the Defense Information Systems Agency (DISA-STIG), the United States Federal Trade Commission (FTC) and many more. The OWASP Testing Guide includes a "best practice" penetration testing framework that users can implement in their own organizations and a "low level" penetration testing guide that describes techniques for testing most common web application and web service security issues.
The University of Udine The University of Udine is a young and dynamic university, whose mission, since its foundation in 1978, has been to promote higher education through generation of new ideas and worldwide connections. It is situated in Udine, a town in Friuli Venezia Giulia Region, which historically has been a meeting place and crossroads of different worlds and cultures. The University of Udine is ranked eighth among Universities in Italy in terms of education quality and research and it has just celebrated its 40th birthday last year.
OWASP Italy Day is a one-day conference focused on web application and software security, application security testing tools and technologies. This year special topic of interest is threat modelling.
This conference provided a unique opportunity to learn about application security topics and to network with application security professionals/managers, software engineers, software quality engineers/testers and computer science students.
Agenda and presentations
|9:00h||"Registration of the participants"
|9:30h||"Welcome and opening of the works"
Prof. Marino Miculan,- Università degli Studi di Udine, Matteo Meucci OWASP Italy
|9:45h||"Keynote: Introduction to Threat Modeling and the Process for Attack SImulation and Threat Analysis"
Marco Morana, SVP Cyber Security Citi
|10:45h||"SSRF present and future"
David Calligaris, Director of Vulnerability Research & Security Testing Automation Huawei Technologies GMBH
|12.15h||"Testing for integrity flaws in web sessions"
Stefano Calzavara, Assistant professor - Università Ca' Foscari Venezia
|13:00h||"End of the OWASP day"