This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "London/Training/OWASP projects and resources you can use TODAY"

From OWASP
Jump to: navigation, search
Line 249: Line 249:
  
 
}}
 
}}
 +
 +
==== OWASP Internals ====
 +
===== Training Concept =====
 +
 +
In terms of training concept for us to use in the future, I believe we will end up proposing a chapters’ driven model with local chapter organization in which the courses are free for OWASP members, the contents are OWASP projects focused and the costs are supported by a mix of funding i.e. local chapter budget, external sponsorship, trainers sponsorship (trip and/or accommodation paid by themselves) and local chapter members’ sponsorship (e.g. hostage of trainers).
 +
 +
Also I’ve altered the order the courses order and put OWASP Top 10 before the Testing Guide as you suggested. As for the topics’ ambition/time slots, when discussing the issue, I firstly came under the some impression. Dinis replied he wanted to test the situation by making available as much modules as possible to find out which ones are the most wanted.
 +
 
__NOTOC__
 
__NOTOC__
 
<headertabs/>
 
<headertabs/>

Revision as of 17:51, 25 March 2010

Training - April, 16th, 2010

COURSE
OWASP projects and resources you can use TODAY
Overview & Goal
 
  • Apart from OWASP's Top 10, most OWASP Projects are not widely used and understood. In most cases this is not due to lack of quality and usefulness of those Document & Tool projects, but due to a lack of understanding of where they fit in an Enterprise's security ecosystem or in the Web Application Development Life-cycle.
  • This course aims to change that by providing a selection of mature and enterprise ready projects together with practical examples of how to use them.
  • The course will be very practical where demonstration and hands-on exercises will be provided for the tools covered.
  • If you are interested in participating in the hands on portion of the course, please bring a laptop.

 

Date Venue & Directions
April, 16th, 2010  

 

Price & Registration
This Course is FREE for OWASP Members. Registration is mandatory.
If you are not an OWASP member as of yet please consider becoming one - $50/USD 12 month term for individual supporters.
Course Registration OWASP Membership (sign now)


COURSE'S MODULES DETAILS
Time Module Trainer Presentation Overview & Goal
   9h00 - 9h30 Guided tour of OWASP Projects Dinis Cruz [http:// (To be linked)] See details and Trainer's notes


   9h30 - 10h15 OWASP Top 10 Fabio Cerullo TBC [http:// (To be linked)] See details and Trainer's notes


   10h15 - 10h30 Coffee Break


   10h30 - 12h00 OWASP Testing Guide Matteo Meucci (Project Leader) Testing Guide - PPT File See details and Trainer's notes


   12h00 - 12h20 OWASP WebScarab Project Colin Watson [http:// (To be linked)] See details and Trainer's notes


   12h20 - 12h40 OWASP Code Crawler Project Alessio Marziali (Project Leader) [http:// (To be linked)] See details and Trainer's notes


   12h40 - 13h00 OWASP DirBuster Project James Fisher (Project Leader) [http:// (To be linked)] See details and Trainer's notes


   13h00 - 14h00 Lunch


   14h00 - 14h20 OWASP JBroFuzz Project Yiannis Pavlosoglou (Project Leader) [http:// (To be linked)] See details and Trainer's notes


   14h20 - 15h20 OWASP WebGoat Project Justin Clarke TBC [http:// (To be linked)] See details and Trainer's notes


   15h20 - 15h30 Coffee Break


   15h30 - 16h00 OWASP ESAPI Fabio Cerullo or Justin Clarke TBD [http:// (To be linked)] See details and Trainer's notes


   16h00 - 16h30 OWASP Software Assurance Maturity Model Colin Watson or Justin Clarke or Matt Bartoldus SAMM - PPT File See details and Trainer's notes


   16h30 - 17h00 OWASP Code Review Project Dinis Cruz [http:// (To be linked)] See details and Trainer's notes


   17h00 - 19h30 OWASP O2 Platform Dinis Cruz [http:// (To be linked)] See details and Trainer's notes


Training - May, 28th, 2010

COURSE
OWASP projects and resources you can use TODAY
Overview & Goal
 
  • Apart from OWASP's Top 10, most OWASP Projects are not widely used and understood. In most cases this is not due to lack of quality and usefulness of those Document & Tool projects, but due to a lack of understanding of where they fit in an Enterprise's security ecosystem or in the Web Application Development Life-cycle.
  • This course aims to change that by providing a selection of mature and enterprise ready projects together with practical examples of how to use them.
  • The course will be very practical where demonstration and hands-on exercises will be provided for the tools covered.
  • If you are interested in participating in the hands on portion of the course, please bring a laptop.

 

Date Venue & Directions
May, 28th, 2010  
  • Lloyds TSB, 5th Floor Seminar Room, Red Lion Court, London SE1 9EQ.
  • Note that the Lloyds TSB building is not well signposted, but is located on the Thames between the Financial Times building (at Southwark Bridge) and the Anchor pub. Closest tubes are London Bridge (walk west along the river) and Mansion House (cross Southwark Bridge).

 

Price & Registration
This Course is FREE for OWASP Members. Registration is mandatory.
If you are not an OWASP member as of yet please consider becoming one - $50/USD 12 month term for individual supporters.
[(The Link is missing) Course Registration] OWASP Membership (sign now)


COURSE'S MODULES DETAILS
Time Module Trainer Presentation Overview & Goal
   9h00 - 10h00 Guided tour of OWASP Projects Dinis Cruz [http:// (To be linked)] See details and Trainer's notes


   10h00 - 11h00 OWASP Top 10 Fabio Cerullo or Eoin Keary TBD [http:// (To be linked)] See details and Trainer's notes


   11h30 - 13h00 OWASP Testing Guide Matteo Meucci Testing Guide - PPT File See details and Trainer's notes


   14h00 - 15h00 OWASP ESAPI Fabio Cerullo or Eoin Keary or Justin Clarke TBD [http:// (To be linked)] See details and Trainer's notes


   15h00 - 16h00 OWASP WebGoat Project Justin Clarke TBD [http:// (To be linked)] See details and Trainer's notes


   16h30 - 17h30 OWASP WebScarab Project Justin Clarke TBD [http:// (To be linked)] See details and Trainer's notes


   17h30 - 18h30 OWASP Code Review Project Eoin Keary TBD [http:// (To be linked)] See details and Trainer's notes


   18h30 - 19h00 OWASP O2 Platform Dinis Cruz [http:// (To be linked)] See details and Trainer's notes


OWASP Internals

Training Concept

In terms of training concept for us to use in the future, I believe we will end up proposing a chapters’ driven model with local chapter organization in which the courses are free for OWASP members, the contents are OWASP projects focused and the costs are supported by a mix of funding i.e. local chapter budget, external sponsorship, trainers sponsorship (trip and/or accommodation paid by themselves) and local chapter members’ sponsorship (e.g. hostage of trainers).

Also I’ve altered the order the courses order and put OWASP Top 10 before the Testing Guide as you suggested. As for the topics’ ambition/time slots, when discussing the issue, I firstly came under the some impression. Dinis replied he wanted to test the situation by making available as much modules as possible to find out which ones are the most wanted.



Retrieved from "https://wiki.owasp.org/index.php?title=London/Training/OWASP_projects_and_resources_you_can_use_TODAY&oldid=80557"