This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

OWASP NYC AppSec 2008 Conference

From OWASP
Revision as of 19:01, 5 March 2008 by Arshan (talk | contribs) (Fixing presentation title)

Jump to: navigation, search

Last Update: 03/5/2008

OWASP NYC AppSec 2008 - October 7th - 10th 2008

In Association with: WASC, NYM InfraGard, AITGlobal, NYC PHP, NYCBUG, ISACA, ISSA and Pace University

OWASP is a 501(3)c NON-PROFIT your business can send you and DONATE to attend this event and get a TAX CREDIT!!

(2) days of Seminars and Techexpo from the world's best technology minds, (2) days of hardcore hands-on training Pace University, located at downtown, NYC at One Pace Plaza New York, NY 10038.

Registration will open on April 1st - no really ;) $350 for seminars, $675 for 1 day training classes and $1350 for 2 day
More Info: Submit a Talk - Sponsorship Oppertunities



Tuesday - October 7th

- *NOTE - Speaker times/dates WILL change once we have a full agenda
Time TRACK1 TRACK2 TRACK3
0800Registration Opens & TechExpo
0930 Industry Outlook - Jennifer Bayuk-CISO Bear Stearns, Mark Clancy-EVP Citi, Jim Routh-CISO DTCC, Sunil Seshadri-CISO NYSE-Euronet (unconfirmed), Warren Axelrod-SVP Bank of America
Moderator - Mahi Dontamsetti
1030Logic Attacks and Inefficiencies of Robotic Detection
Robert "RSnake" Hansen
Offensive Assessing Financial Apps
Daniel Cuthbert
Web Intrusion Detection with ModSecurity
Ivan Ristic
1130Reverse Engineering .NET
Adam Boulton
JBroFuzz + Crypto not that hard..
Yiannis Pavlosoglou
Open Reverse Benchmarking
Tom Stracener
1230Black Art White Hat
Tom Brennan
OWASP CLASP
Pravir Chandra
.NET Ninja or Pirate?
Dinis Cruz
1330TECH-EXPO LUNCH
1430W3AF Web Application Attack and Audit Framework.
Andres Riancho
WASC Hacking Incidents
Jeremiah Grossman
OWASP CSRFTester Project
Dave Wichers
1530OWASP Enterprise Security API (ESAPI) Project
Jeff Williams
Next Generation Cross Site Scripting Worms
Arshan Dabirsiaghi
Application Security Forensics - Now What
FBI Cybercrimes
1630Shhhh don't tell anybody
Petko D. Petkov, a.k.a pdp
Secure PHP
Hans Zaunere
PCI‐DSS and the New Enterprise Java
Dr. B. V. Kumar
1730Notes Security
Jian Hui Wang
Full Disclosure vs Non-disclosure vs Responsible Disclosure
Panel
AppSec Techniques
JD Glaser
1830Web Application Capture the Flag (All night - Bring It!)
2100Tuesday Night Reception @ NYC Famous Webster Hall


Wednesday - October 8th

- Check Back Soon
Time TRACK1 TRACK2 TRACK3
0800Web Application Capture the Flag Results
0930 Keynote: OWASP Foundation Board - "This thing, we have"
1000TOPIC
SPEAKERS
TOPICS
SPEAKERS
TOPICS
SPEAKERS
1100TOPIC
SPEAKERS
TOPIC
SPEAKERS
TOPIC
SPEAKERS
1200TOPIC
SPEAKERS
TOPIC
SPEAKERS
TOPIC
SPEAKERS
1300TECH-EXPO LUNCH
1400TOPIC
SPEAKERS
TOPIC
SPEAKERS
TOPIC
SPEAKERS
1500TOPIC
SPEAKERS
TOPIC
SPEAKERS
TOPIC
SPEAKERS
1600TOPICS
SPEAKERS
TOPICS
SPEAKERS
TOPICS
SPEAKER
1700TOPIC
SPEAKERS
TOPIC
SPEAKERS
TOPIC
Tom Brennan
1830 TBD
2100 Closing Remarks / Awards / Raffles


Technology Expo - October 7th - 8th

Want to see the latest offerings from best of breed technology firms? For 2 days, Product/Service vendors worldwide will demonstrate their ability to conference attendees.

To be a OWASP 501(3)c NON-PROFIT SPONSOR CLICK HERE for details


OWASP AppSec 2008 Training Courses - October 9th and 10th 2008

TRAINING WITH OWASP IS A DONATION TO A 501(3)c NON-PROFIT
T1. Defensive Programming - 2-Days - $1350
This class will teach you how to program defensively. A must for developers, managers, testers and security professionals. Learn the latest techniques to build attack resistant code, protect from current and future vulnerabilities and how to secure an application from both implementation bugs and design flaws. The instructor Pravir Chandra is well known security expert, project lead for OWASP CLASP project and former co-founder & CTO of secure software Learn More Here

Lecturer: Pravir Chandra, Project Lead OWASP CLASP Project, Principal Consultant, Cigital

T2. Advanced Web Application Security Testing - 1-Day - $675
Syllabus Forthcoming

Lecturer: TBD

T3. Web Services and XML Security - 2-Days - $1350
The movement towards Web Services and Service Oriented architecture (SOA) paradigms requires new security paradigms to deal with new risks posed by these architectures. This session takes a pragmatic approach towards identifying Web Services security risks and selecting and applying countermeasures to the application, code, web servers, databases, application, and identity servers and related software. Learn More Here

Lecturer: TBD

T4. Leading the Development of Secure Applications 1-Day - Oct 9th - $675
In this one-day management session you’ll get the answers to the ten key questions that most CIOs and development managers face when trying to improve security in the development process. The course provides proven techniques and valuable lessons learned that can be applied to projects at any phase of their application’s lifecycle. Learn More Here

Lecturer: TBD

T5. Application Security Forensics - 1-Day - Oct 10th - $675
How would you respond to a application security hack? This course will provide insight into the world or forensics with a focus on Web Application Security

Lecturer: TBD

Click here for more info: CFP/SPEAKERS

HOTELS / TRAVEL

Hotel's in the area of the event