This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Projects Summit 2013/Working Sessions/0013"

From OWASP
Jump to: navigation, search
Line 9: Line 9:
 
|-
 
|-
  
| short_working_session_description= '''Collaboration, Learning, and Sharing Knowledge are the objectives for Bug Bounty program. It offers a 'life hacking' event within a controlled environment.'''  
+
| short_working_session_description= '''Collaboration, Learning, and Sharing Knowledge are the objectives for Bug Bounty program. It offers a 'live hacking' event within a controlled environment.'''  
  
  

Revision as of 21:15, 15 October 2013

Global Summit 2013 Home Page
Global Summit 2013 Tracks

Working Session.jpg Bug Bounty Session
Please see/use the 'discussion' page for more details about this Working Session
Working Sessions Operational Rules - Please see here the general frame of rules.
WORKING SESSION IDENTIFICATION
Short Work Session Description Collaboration, Learning, and Sharing Knowledge are the objectives for Bug Bounty program. It offers a 'live hacking' event within a controlled environment.
Related Projects (if any)


Email Contacts & Roles Chair
Dinis Cruz @

Operational Manager
Mailing list
Google Groups: owasp-project-summit-2013
WORKING SESSION SPECIFICS
Objectives
  1. Collaboration, Learning and Sharing Knowledge - By creating an environment where attendees can get together in an 'live hacking' event.
  2. In order to keep things focused, the 'targets' are going to be companies that have public "Bug Bounties' programs. These will be companies that accept and want to be targets for such ethical hacking activities.
  3. Each participant will be asked to have 'common sense' and to respect a couple 'soft' rules of engagement.
  4. All participants are encouraged to share their ideas, techniques and discoveries.
  5. In addition to the 'Bug Bounty' targets, we will also add a couple Open Source apps so that the 'builders' also have the opportunity to fix the source code and the 'breakers' can do source-code analysis.

Venue/Date&Time/Model Venue/Room
AppSec USA 2013: Times Square, New York City
Date & Time
Monday and Tuesday: all day (What day works for you)


Discussion Model
participants and attendees

WORKING SESSION OPERATIONAL RESOURCES
Projector, whiteboards, markers, Internet connectivity, power

WORKING SESSION ADDITIONAL DETAILS

NEW-PROJECTS-BANNER2.jpg

Chair: Dinis Cruz

Dinis Cruz is a Security Consultant based in London (UK) and specialized in: ASP.NET/J2EE Application Security, Application Security audits and .NET Security Curriculum Development.

For the past years Dinis has focused on the field of Static Source Code analysis, from May 2007 to Dec 2009 he worked as a independent consultant for Ounce Labs (bought by IBM in July 2009) where during active security engagements using Ounce's technology he developed the Open Source codebase which now is the foundation of the OWASP O2 Platform.

At OWASP, Dinis is the leader of the OWASP O2 Platform project.

Operational Manager:

WORKING SESSION OUTCOMES / DELIVERABLES
Proposed by Working Group 'Delivered by Working Group

To have authorization to attack/test 'targets'.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

Working Session Participants

(Add you name by clicking "edit" on the tab on the upper left side of this page)

WORKING SESSION PARTICIPANTS
Name Company Notes & reason for participating, issues to be discussed/addressed

{{{summit_session_attendee_company21}}}
{{{summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed21}}}