This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit


Revision as of 15:30, 11 December 2015 by Ashwini.paranjpe (talk | contribs)

Jump to: navigation, search


Welcome to the Pune chapter homepage. The chapter leader is Ashwini Paranjpe


OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.


Btn donate SM.gif to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


December 2015 meet on 17th December, 2015 () 5.00 pm to 6.00 pm - IST

Note – OWASP Pune chapter meets are free and open to everyone. Prior registrations are mandatory in order to be allowed to attend the meet.

For Registration please visit -

Session Details/Agenda:

5.00 pm to 6.00PM: CICD - Continuous integration, continuous development by Mahesh Saptarshi/ Rohit Pitke

In the present scenario of rapid product development, CICD (continuous integration, continuous deployment), and always-available e-retail, banking and social media services it is imperative that security assurance practices also scale up to the shorter timelines.

While we know that tools and automation is the way to go, running different tools, collating the reports, filing the evidences for audits and assuring management and auditors of the security preparedness of the deployment is still not scalable to weekly deployments, let alone daily and hourly roll outs.

Mahesh will demonstrate a security automation framework where this problem is addressed through separating the tool running intelligence from the report parsing and orchestration. It serves two purposes: 1. Periodic and predictable (baseline) tool runs for trend analysis 2. Rapid integration framework to add more and more tools without the entire team learning the new tools, and protecting "institutional learning".

This also allows for collecting the security assurance related data in a single place so the data analysis (eventually this will be Big Data) to be performed independent of the tools and targets

When: 17th December, 2015 (Thursday) - 11:00 AM IST

Where: PTC Software Pvt. Ltd. Marisoft complex, Kalyani Nagar, Wadgoan Shery Pune 122001

Join our low traffic mailing list for events information and technical discussions

Delhi JoinEmailList.jpg Subscribe to OWASP Pune Mailing list

Follow @OWASPdelhi for event updates on Twitter

Twitter-bird-cropped-onwhite-40%smaller.png OWASP Pune Twitter Account

Join our LinkedIn group for event updates on LinkedIn

Delhi linkedin.jpg OWASP Pune LinkedIn Group

OWASP Pune November, 2015 Monthly Meeting Presentations
- OWASP top 5 issues by Manish Dussad and Sumita Uday