Difference between revisions of "Long Island"

Revision as of 12:56, 8 October 2009

OWASP Long Island

Welcome to the Long Island chapter homepage.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member?

Chapter Meetings

Scroll down to see the upcoming Long Island OWASP events

RSVP REQUESTED

Date: 10/24/2009
Time: 11:00-14:00
Place: Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 MAP
Directions: Enter from the service road on the East Bound side of Sunrise Hwy. Turn right after passing the security gate. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all attendees do not park in any spot marked as RESERVED. Once you enter building 200, pass through security, turn right and head down the hall, pass through the first set of doors. Our conference room is your first right. There will be signs posted along this path directing attendees to the room.

Agenda:

11-00 - Opening Remarks & Welcome to OWASP Foundation

--Helen Gao, OWASP LI Board

11-20 - Attacking VoIP With The OWASP Top 10

VoIP systems allow for cheap and easy telephony communication. Current VoIP implementations may be more vulnerable then you believe. How could an attacker own your PBX with the OWASP Top 10? Topics will include Vulnerability Research, Protocol Fuzzing, VoIP and the OWASP Top 10. Proof of concept zero day vectors will be discovered and exploited. This is going to be fun!

--Blake Cornell Security Consultant Net2S/BT-INS, OWASP NY/NJ/LI Board Member

12-10 - Lunch

12-20 - Network Version Control

Leveraging Python, Nmap, Ndiff and Subversion to create baselines of your hosts and services. Together, these form a basic foundation to detect unapproved changes and alert accordingly.

--Ryan Behan, OWASP LI Board Member

13-20 - Passive Web Application Analysis

Discover ways to leverage the tools you currently use to find potential vulnerabilities in web applications as early as during an initial application walk through. This talk will cover the current state of passive web application analysis as well as discuss how to set up a framework for your own testing needs.

--Phil Ames, Security Consultant

All Day Event - Capture the Flag

There will be a day long CTF event. Test your skills, learn new exploitation techniques, hack in a team, get the highest score, win prizes? Hack the day away with your friends and peers.

--Dan Guido, OWASP NY/NJ Board Member

AFTER EVENT NETWORKING WILL BE HELD AT THE BLUE POINT BREWERY!!

Rides will be provided to the Blue Point Brewery. When you are done with enjoying the best brews on the East Coast, the train station is only a short walk away!

Chapter Leaders/Contacts

• Helen Gao, CISSP
• Ryan C Behan
• Blake Cornell 212-202-6704

External Links

• IEEE considers security as a software lifecycle development requirement
• OWASP is a recommended secure coding guideline in PCI DSS
• Internet Security Glossary