Difference between revisions of "OWASP Day KL 2016"

Registration Now Open!!!

OWASP Day KL 2016 Registration Form Please click to download the registration Form

Who Should Attend OWASP Day KL 2016:

• Application Developers
• Application Testers and Quality Assurance
• Application Project Management and Staff
• Chief Information Officers, Chief Information Security Officers, Chief Technology Officers, Deputies, Associates and Staff
• Chief Financial Officers, Auditors, and Staff Responsible for IT Security Oversight and Compliance
• Security Managers and Staff
• Executives, Managers, and Staff Responsible for IT Security Governance
• IT Professionals Interesting in Improving IT Security
• Lecturer & Student it IT field

We need to announce that our training are limited seat. So hurry up register to book your seat only 30 seat per class.

All the attendee will be provided Attendee Certificate by UniKL & OWASP Malaysia

For this events we would like to announce that this events are claimable by HRDF

Keynote Speakers

Iwan Sumantri (Vice Chairman ID-SIRTII/CC)

Iwan Sumatri is a vice chairman at R&D Id-SIRTII/CC (Indonesia Security Incident Response Team on Internet Infrastructure/Coordination Center).He also have experience as consultant at BUMN, Government Agency and private sector at Indonesia. He will share aout his experience handle incident and research to his keynote.

OWASP DAY KL 2016

CALL FOR Presentation

OWASP Day KL 2016 Conference will be a major international forum for the presentation of research results, cutting-edge ideas and in-depth discussions in the field of application security. OWASP Day KL 2016 Conference invites application security researchers, thought leaders and developers worldwide to submit papers for the opportunity of presenting to expected participants.

The topics we are seeking include, but are not limited to:

1. Web Application Security
2. Mobile Application Security
3. Cloud Application Security
4. Software and Architecture Patterns for Application Security
5. Metrics for Application Security
6. OWASP Tools and Projects
7. Secure Coding Practices (J2EE/.NET)
8. Application Security Testing
9. New Attacks and Defense
10. Other subjects related to OWASP and Application Security

To make a submission:

[ Call For Presentation] OPEN

Each talk should be limited to 30 minutes, followed by a 5 minute question session.

• Submission deadline: August 20, 2016.
• Notification of acceptance: August 22, 2016.
• Presentation slides due: September 20, 2016.

CALL FOR Training

In-conjunction with OWASP Day KL 2016 also provided workshop. It will separate day with the seminar and will conduct 2 full day. It will 5 major topic on the workshop.

• Malware Forensic
• Penetration Testing
• Weaponizing Malware 101
• Reverse Engineering
• Secure Web App Development

[ Call For Training] OPEN

• All the speaker & trainers will be given Speaker Honor Cert from UniKL & OWASP Malaysia

Trainers

We have 5 Professional Trainer for the training

Muhammad Abdul Aalim Ahmad Rozli

Aalim Rozli is a local it security enthusiast which currently based in Kuala Lumpur. While his full-time job is doing security testing, he did also spend some of his time working on simple web development. As a security tester, he have come across various security issue pertaining web application which later he try not to repeat the same in his development. Seeing from security tester and developer perspective, he believe that most of the vulnerabilities, if not all, can be addressed during development stage. And, to make that possible, it is essential to have a developer with some degree of awareness on why need to secure code.

Syed Zainudeen Mohd Shaid

Dr Syed Zainudeen Mohd Shaid is a lecturer at Universiti Teknologi Malaysia (UTM) where he teaches subjects like Penetration Testing, Security Programming, OS Exploitation and other security related subjects. A member of the Information Assurance & Security Research Group (IASRG), he is active in Malware Research. He also does training and consultancy on Web Security, Secure Coding, Android, and embedded systems. He loves gadgets and enjoys exploring new things related to security.

Ade Yoseman Putra

Ade Yoseman Putra was an information security addict. He is a bug researcher in some vulnerabilty website(0day, packetstormsecurity & security focus, exploit db, etc). Researcher & also a Co-founder of securityjustillusion.org (non-profit organization information security). He has 5 years’ experience in information security as Security Engineer , security analyst, penetration tester, trainer and speaker in information security, experience in cert (computer emergency response team) as malware analysis. Besides that, he has experience as security consultant in Kuala Lumpur Malaysia (2014) finalist / 3rd Team Winner for Cyberlympics Asia-Australia (2012) www.cyberlympics.org

Azlan Mukhtar

Azlan Mukhtar is a Co-Founder of Eraxen PLT, a cybersecurity startup company, trying to solve malware attack problems. For the past 9 years, he was working for F-Secure, Symantec, and Blue Coat as malware analyst and reseacher fighthing malware. As a reverse engineering enthusiast, he loves sharing knowledge, doing training for the communities(sometimes for free), and occasionaly participate reverse engineering challenges such as Flare-On by FireEye. Previously experience as Malware Analyst at F-Secure, Symantec, Blue Coat.

Muhammad Shahriman Samsudin

Muhammad Shahriman (GPEN) work as a Senior Security Consultant. His hacking knowledge and reputation is known when he won the Uitm International Hacking Competition continuously from 2006 until 2008.His exclusive jobs allow him to experiment with all kinds of hacking tools and techniques during the penetration testing. He has dedicated his life to test out the "security state" of most government agencies, law enforcers and numerous financial institution inside and outside of Malaysia.If exploits for certain vulnerability is not available off the shelf, he just write his exploit on his own. He also have passion for teaching and have taught on Network Security inside and outside the country the furthest is (King Abdul Aziz University in Saudi).

He also have actively involves in numerous incident response handling cases particularly related to Digital Forensic issues. He capability to understand the structure of a program or a flow of a network aids him a lot in solving a lot of forensics studies issues. He runs his own blog (http://y0nd13.blogspot.com) where he posted up his tools and research such as "Hunnybunny a remote shellcode Launcher", "Twit2bot a SMS twitter basedbotnet", "Bypassing Antivirus using Stealth Meterpreter".In his spare time, he likes to messed around with Fedora Linux and docodes in Python. He is also an expert in hacking WIMAX/4G Technology.

Speakers

We have 8 professional speaker will present latest technology related to Cybersecurity

Mohd Akmal Hj Ruslan (BitDefender)

Akmal joined Bitdefender Malaysia since 2014 and within the first year, he has been promoted as Technical Manager cum Trainer. For the past 2 years, he has been conducted over hundreds of training, workshop and seminar mainly for fellow re-sellers. As the team leader cum Technical specialist, he require long working hour with both partners & customers in designing their security network, give advise how best practice besides hands-on in daily operation.

ASP Mohd Riduan Abd Majid (JSJK, PDRM)

ASP Mohd Riduan join PDRM since 2007 as Investigation Officer at Computer Crime/Internet/Intellectual Property, Cyber & Multimedia Crime Investigation Division, JSJK, PDRM Bukit Aman. His involvement on multiple cases of cyber crime including cyber fraud, online scammer and related online crime make him understand on how the crime modus operandis and how it make a threat to Malaysian Citizen especially. His task to enforce, detect, prevent all this crime and assist any case to court. With his vast experience about cyber crime he will share on PDRM perspective on Cyber Crime in Malaysia.

Azril Rahim

Azril Rahim is a passionate cyber security expert with over 13 years of experiance. He is also an advocate for open source software where he also developed codes for computer security as well network and general purpose tools. His interest on computer security focuses on vulnerability assessment, pen-test, computer and network forensics, cyber threats intelligence, PKI and secure communication & network programming. He is also has won several awards from the Malaysian government for his work contribution in computer security. He is also hold several international certifications in computer security. Most of his cyber security work are proven hands on and validated via research papers, written & presented technical presentations, hands on work and also computer codes codings. More information about Azril work on computer security & programming can be obtain at his website at http://azrilrahim.site88.net

Walter Wong

Walter Wong is a technical lead in Gain Secure, a Malaysian-based company. The company specialized for providing secure application development and user experience (UX) consultation services to customers. Walter is a Microsoft MVP for developer security and Microsoft Azure. Research on application development security is Walter's personal interest. He also successfully discovered many websites vulnerabilities including some high traffic websites over the past few years. Walter often speaks at technical conferences such as Visual Studio 2010 Launch, TechEd SEA, Security Symposium, TechNet/MSDN, Tech Insights and more. Hosting the application in the cloud infrastructure does not guaranty your application and data security by default. It’s developer responsibility to ensure the application developed, configured and hosted is secure by default. Come and join Walter in his demo packed rollercoaster ride to understand more about Microsoft Azure security features. If you looking forward for a demo how to break the application hosted in Azure, this is the session you don’t want to miss.

Melvim Lim

Started off as Solutions Specialist, Melvin carries with him over 13 years of security focus experiences working with leading companies like Bluecoat, McAfee, Akamai and Infoblox. With cyber defense always at the the top of his mind, he provided threat briefing, network security assessment workshops for many organisations in ASEAN, reviewed their network security posture for vulnerabilities, . In a few occasions, Melvin was called back by the organization when the security gaps he highlighted were subsequently exploited by the attackers. In Infoblox, Melvin focuses on data leakage over DNS, defense in depth against DNS DDoS and exploits, which are some of the least addressed security gaps in many organizations today.

Mohammad Zahir Mat Salleh

Zahir is a Network Engineer in one of Malaysia public university. He involved in the deployment of DARKNET project and used it for the monitoring malicious network traffic for 2 years. He is very interested in open source software since he joined OWASP group members. He graduated from UniKL MIIT in 2009 and he constitute alumni UniKL members.

Sina Manavi

Sina Manavi is a Senior Consultant at EC-Council and official OWASP member since 2012. He has wide experience in Penetration Testing, Digital Forensics, Incident Handling and Malware Analysis. He has been a speaker in different government agencies and universities for the past years in Malaysia as well as Iran. He has developed different penetration testing books and contents. Sina trained over 500+ security experts in Information Security Industry across Malaysia and Iran. Sina reported various 0-days vulnerabilities to different government agencies and enterprises as an ethical hacker.

Mohd Zabri Adil Talib

As Head of Digital Forensics Department of CyberSecurity Malaysia. Zabri has vast experiences in handling computer crimes and computer-related crimes forensics examination for various law enforcement agencies in Malaysia. He is also responsible to provide digital forensics trainings to national law enforcement officers, the deputy of public prosecutors and also court judges.

Day 1 - 15 November 2016

• • • Reminder: Workshop participants please bring your laptop during the workshop sessions

Day 2 - 16 November 2016

• • • Reminder: Workshop participants please bring your laptop during the workshop sessions

***Reminder: Workshop participants please bring your laptop during the workshop sessions

Day 3 - 17 November 2016

Preliminary Program

The final program will be available before October 2016.

Sponsor US!

• Main Sponsor

Abyres

• Venue Sponsor

University Kuala Lumpur

• Sponsor

Rapid7

Infoblox

BitDefender

MU Dot My

Support Partner

CyberSecurity Malaysia

New in 2016, we are offering exclusive OWASP Day KL 2011 Sponsorships to provide additional benefits and streamline the planning process for our most supportive organizations.

Please contact us directly if you have any related question.

Intented Sponsors:

• Contact us

Members

OWASP Malaysia representative:

• Mohd Fazli Azran (Chapter Leader)

UniKL representative (SuperGirl Team):

• Norsuhaili Seid (Advisor)
• Norhaiza Ya Abdullah (Project Leader)
• Wan Hazimah Wan Ismail (Deputy Project Leader/ Secretary 1)
• Amalia @ Amelia Mukhlas (Secretary 2/Seminar Members)
• Mardiana Mahari (Training Team Leader)
• Dalilah Abdullah (Registration Team Leader)
• Herny Ramadhani Mohd Husni (Seminar Team Leader)
• Husna Sarirah Husin (Registration Members)
• Siti Salwa Hasbullah (Registration Members)
• Arunna Azariah (Seminar Members)

OWASP Volunteer Team:

• Wan Ikbal Ismail (MC)
• Neo Wilson (CS)
• Hidzuan Hashim (Photographer)

AJK Student:

REGISTRATION TEAM

• Azeem Salehuddin bin Isma Zaki (LEADER)
• Nur Zuhairah bt Abdul Halim
• Nor Syafiqah Aqilah bt Che Malek
• Nor Adani bt Kamal Mohamad Nasir
• Nabila Syuhada bt Mat Samsul

SEMINAR TEAM

• Mohammad Izrin bin Abdul Rashid (LEADER)
• Nur Adilla Shahida bt Salleh
• Fitri Nur Fathihah bt Abdul Sani
• Ariff Affandi bin Azman
• Nik Hazhirah bt Nik Badrul Ehsan
• Muhammad Na'im Zikri bin Mohd Zamli
• Hanan Fatihah bt Chek Zainon

TRAINING TEAM

• Adham bin Ramlee (LEADER)
• Muhammad Ansaruddin bin Nik Mohd Tahir
• Muhammad Zul Husnain bin Abd Samad
• Muhammad Fakhrulizzuan bin Harun
• Che Nur Fatihah bt Che Azmi
• Amirul Hanafi bin Abdullah

OTHERS

• Muhd Sham Ashraff bin Maskan (LEADER)
• Hazirah Syahirah bt Hanafi
• Fitri Nur Fathihah bt Abdul Sani
• Nuriah Nasihah bt Kamarulzaman

Registration Fee

If you are neither an OWASP member nor an OWASP Malaysia chapter member, please feel free to join us!

It is special discount for all OWASP Paid members and all OWASP Malaysia Paid chapter members.

Please ensure that the information given are correct before submission.
Our staff will send confirmation email and payment MUST be made within 5 working days.
Method of payment:
A) cash deposit.
B) LO & PO for government only.
C) cheque deposit .
D) online money transfer.

ACCOUNT DETAIL:
Company : Universiti Teknikal Mara Sdn Bhd
Bank Name : CIMB Bank BHD
Account Name : AKAUN PUNGUTAN UNIKL IIM
Account Number : 80-80026465-3
Bank Swift Code : CIBBMYKL

For more inquiries on payment, please contact:
Admin OWASP DAY KL 2016
No. Telephone : +603-21754135 / +60321754349 / +60321754309 / +60321754362 / +60321754364
No. Fax : +603-21754441

Official OWASP Day KL 2016: http://owasp.unikl.edu.my

Accommodation

Please check the local hotel website for detail information. For more details please check at logistic tab.

Venue

Universiti Kuala Lumpur

website: http://www.unikl.edu.my

Hotel

For the Hotel suggested near at the venue area:

• Sheraton Imperial
• Regency
• Concorde
• Shangri-La
• Renaissance

Travel

How to obtain a visa for the event

• Invitation letter will be sent out for overseas attendees after registration.
• For detailed information on obtaining a business visa for this event, please refer to Malaysia embassy

Parking

UniKL have limited parking. All participant can parking at behind UniKL. It a Shopping Complex "Quill City Shopping Mall"