This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
OWASP NYC AppSec 2008 Conference
Last Update: 03/5/2008
OWASP NYC AppSec 2008 - October 7th - 10th 2008
In Association with: WASC, NYM InfraGard, AITGlobal, NYC PHP, NYCBUG, ISACA, ISSA and Pace University
OWASP is a 501(3)c NON-PROFIT your business can send you and DONATE to attend this event and get a TAX CREDIT!!
(2) days of Seminars and Techexpo from the world's best technology minds, (2) days of hardcore hands-on training Pace University, located at downtown, NYC at One Pace Plaza New York, NY 10038.
Tuesday - October 7th
- *NOTE - Speaker times/dates WILL change once we have a full agendaTime | TRACK1 | TRACK2 | TRACK3 |
---|---|---|---|
0800 | Registration Opens & TechExpo | ||
0930 | Industry Outlook - Jennifer Bayuk-CISO Bear Stearns, Mark Clancy-EVP Citi, Jim Routh-CISO DTCC, Sunil Seshadri-CISO NYSE-Euronet (unconfirmed), Warren Axelrod-SVP Bank of America Moderator - Mahi Dontamsetti | ||
1030 | Logic Attacks and Inefficiencies of Robotic
Detection Robert "RSnake" Hansen |
Offensive Assessing Financial Apps Daniel Cuthbert |
Web Intrusion Detection with ModSecurity
Ivan Ristic |
1130 | Reverse Engineering .NET Adam Boulton |
JBroFuzz + Crypto not that hard.. Yiannis Pavlosoglou |
Open Reverse Benchmarking Tom Stracener |
1230 | Black Art White Hat Tom Brennan |
OWASP CLASP Pravir Chandra |
.NET Ninja or Pirate? Dinis Cruz |
1330 | TECH-EXPO LUNCH | ||
1430 | W3AF Web Application Attack and Audit Framework. Andres Riancho |
WASC Hacking Incidents Jeremiah Grossman |
OWASP CSRFTester Project Dave Wichers |
1530 | OWASP Enterprise Security API (ESAPI) Project Jeff Williams |
Cross Site Scripting - Worms Arshan Dabirsiaghi |
Application Security Forensics - Now What FBI Cybercrimes |
1630 | Shhhh don't tell anybody Petko D. Petkov, a.k.a pdp |
Secure PHP Hans Zaunere |
PCI‐DSS and the New Enterprise Java Dr. B. V. Kumar |
1730 | Notes Security Jian Hui Wang |
Full Disclosure vs Non-disclosure vs Responsible Disclosure Panel |
AppSec Techniques JD Glaser |
1830 | Web Application Capture the Flag (All night - Bring It!) | ||
2100 | Tuesday Night Reception @ NYC Famous Webster Hall |
Wednesday - October 8th
- Check Back SoonTime | TRACK1 | TRACK2 | TRACK3 |
---|---|---|---|
0800 | Web Application Capture the Flag Results | ||
0930 | Keynote: OWASP Foundation Board - "This thing, we have" | ||
1000 | TOPIC SPEAKERS |
TOPICS SPEAKERS |
TOPICS SPEAKERS |
1100 | TOPIC SPEAKERS |
TOPIC SPEAKERS |
TOPIC SPEAKERS |
1200 | TOPIC SPEAKERS |
TOPIC SPEAKERS |
TOPIC SPEAKERS |
1300 | TECH-EXPO LUNCH | ||
1400 | TOPIC SPEAKERS |
TOPIC SPEAKERS |
TOPIC SPEAKERS |
1500 | TOPIC SPEAKERS |
TOPIC SPEAKERS |
TOPIC SPEAKERS |
1600 | TOPICS SPEAKERS |
TOPICS SPEAKERS |
TOPICS SPEAKER |
1700 | TOPIC SPEAKERS |
TOPIC SPEAKERS |
TOPIC Tom Brennan |
1830 | TBD | ||
2100 | Closing Remarks / Awards / Raffles |
Technology Expo - October 7th - 8th
Want to see the latest offerings from best of breed technology firms? For 2 days, Product/Service vendors worldwide will demonstrate their ability to conference attendees.
To be a OWASP 501(3)c NON-PROFIT SPONSOR CLICK HERE for details
OWASP AppSec 2008 Training Courses - October 9th and 10th 2008
TRAINING WITH OWASP IS A DONATION TO A 501(3)c NON-PROFITT1. Defensive Programming - 2-Days - $1350 |
---|
This class will teach you how to program defensively. A must for developers, managers, testers and security professionals. Learn the latest techniques to build attack resistant code, protect from current and future vulnerabilities and how to secure an application from both implementation bugs and design flaws. The instructor Pravir Chandra is well known security expert, project lead for OWASP CLASP project and former co-founder & CTO of secure software Learn More Here
Lecturer: Pravir Chandra, Project Lead OWASP CLASP Project, Principal Consultant, Cigital |
T2. Advanced Web Application Security Testing - 1-Day - $675 |
Syllabus Forthcoming
Lecturer: TBD |
T3. Web Services and XML Security - 2-Days - $1350 |
The movement towards Web Services and Service Oriented architecture (SOA) paradigms requires new security paradigms to deal with new risks posed by these architectures. This session takes a pragmatic approach towards identifying Web Services security risks and selecting and applying countermeasures to the application, code, web servers, databases, application, and identity servers and related software. Learn More Here
Lecturer: TBD |
T4. Leading the Development of Secure Applications 1-Day - Oct 9th - $675 |
In this one-day management session you’ll get the answers to the ten key questions that most CIOs and development managers face when trying to improve security in the development process. The course provides proven techniques and valuable lessons learned that can be applied to projects at any phase of their application’s lifecycle. Learn More Here
Lecturer: TBD |
T5. Application Security Forensics - 1-Day - Oct 10th - $675 |
How would you respond to a application security hack? This course will provide insight into the world or forensics with a focus on Web Application Security
Lecturer: TBD |
Click here for more info: CFP/SPEAKERS