This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Malta"

From OWASP
Jump to: navigation, search
(Listing of Upcoming Events)
(Upcoming Events)
Line 21: Line 21:
 
Map: https://goo.gl/maps/W6gUjDb19xo
 
Map: https://goo.gl/maps/W6gUjDb19xo
  
'''Title:''' TBA
+
'''Title:''' Porting a Proof of Concept C code into universal python exploit (OpenSSH).
  
<blockquote>TBA.</blockquote>
+
'''Summary:'''
 +
 
 +
OpenSSH lets you grant SFTP access to users without allowing full command execution using “ForceCommand internal-sftp”. However, if you misconfigure the server and don’t use ChrootDirectory, the user will be able to access all parts of the filesystem that he has access to – including procfs. On modern Linux kernels (>=2.6.39, I think), /proc/self/maps      reveals the memory layout and /proc/self/mem lets you write to arbitrary memory positions.
 +
 
 +
This talk will provide an overview of the exploitation process for the OpenSSH vulnerability and the challenges and techniques used to create an universal exploit for 32 and 64 bit architectures.
  
 
'''Speaker:'''  Adam Simuntis and Mindaugas Slusnys
 
'''Speaker:'''  Adam Simuntis and Mindaugas Slusnys
 
'''RSVP:''' TBA
 
  
  

Revision as of 15:18, 16 March 2018

This OWASP Chapter is inactive.  If you are interested in restarting this Chapter contact us for more information or apply to restart this chapter .



OWASP Malta

Welcome to the Malta chapter homepage. The chapter leader position is OPEN.


Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


Listing of Upcoming Events

OWASP Malta Chapter Meeting, April, 2018

When:

  • Date: Thursday 12th April 2018
  • Time: 18:30

Where:

MCAST IICT - MCAST Main Campus,

Triq Kordin, Paola PLA 9032

Map: https://goo.gl/maps/W6gUjDb19xo

Title: Porting a Proof of Concept C code into universal python exploit (OpenSSH).

Summary:

OpenSSH lets you grant SFTP access to users without allowing full command execution using “ForceCommand internal-sftp”. However, if you misconfigure the server and don’t use ChrootDirectory, the user will be able to access all parts of the filesystem that he has access to – including procfs. On modern Linux kernels (>=2.6.39, I think), /proc/self/maps reveals the memory layout and /proc/self/mem lets you write to arbitrary memory positions.

This talk will provide an overview of the exploitation process for the OpenSSH vulnerability and the challenges and techniques used to create an universal exploit for 32 and 64 bit architectures.

Speaker: Adam Simuntis and Mindaugas Slusnys


Back to Top


OWASP Malta Chapter Meeting, June, 2018

When:

  • Date: Thursday 14th June 2018
  • Time: 18:30

Where:

MCAST IICT - MCAST Main Campus,

Triq Kordin, Paola PLA 9032

Map: https://goo.gl/maps/W6gUjDb19xo

Title: TBA

TBA.

Speaker: TBA

RSVP: TBA


Back to Top


OWASP Malta Chapter Meeting, August, 2018

When:

  • Date: Thursday 9th August 2018
  • Time: 18:30

Where:

MCAST IICT - MCAST Main Campus,

Triq Kordin, Paola PLA 9032

Map: https://goo.gl/maps/W6gUjDb19xo

Title: TBA

TBA.

Speaker: TBA

RSVP: TBA


Back to Top

OWASP Malta Chapter Meeting, October, 2018

When:

  • Date: Thursday 11th October 2018
  • Time: 18:30

Where:

MCAST IICT - MCAST Main Campus,

Triq Kordin, Paola PLA 9032

Map: https://goo.gl/maps/W6gUjDb19xo

Title: TBA

TBA.

Speaker: TBA

RSVP: TBA


Back to Top

OWASP Malta Chapter Meeting, December, 2018

When:

  • Date: Thursday 13th December 2018
  • Time: 18:30

Where:

MCAST IICT - MCAST Main Campus,

Triq Kordin, Paola PLA 9032

Map: https://goo.gl/maps/W6gUjDb19xo

Title: TBA

TBA.

Speaker: TBA

RSVP: TBA


Back to Top

Listing of Past Meetings and Events

2018 | 2017 | 2016]



2016


OWASP Malta Chapter Meeting, December, 2016

When: 9th December @ 18:30 - 20:30

Where: Middlesex University, Triq Alamein, Pembroke, Malta

Title: Introduction to OWASP Malta || Memorable Hacks in the Gaming industry

As one of the key market verticals in Malta is iGaming, we will open the OWASP chapter covering a number of ingenius hacks see through history. Rodrigo will cover a number of interesting scenarios of hacks applied to the gaming sector.

Speaker: Rodrigo Marcos


Back to Top


Our Chapter Leadership

Chapter Leadership Board Member Role Responsibilities Person(s)
Chapter Leader The central point of contact for the Chapter and responsible to the OWASP Board. Serves as Chapter Leader and Chapter board chair. Rodrigo Marcos
Talk / Speaker Coordination Serves as the primary point of contact for speakers who want to participate in the chapter. Rodrigo Marcos

Sponsorship Opportunities with our Chapter

The Malta OWASP Chapter can offer your company several sponsorship opportunities. If you are interested in taking advantage of any of these opportunities, please contact Rodrigo Marocs, the Malta OWASP Chapter Leader.