[Owasp-austin] OWASP Austin: Chapter Meeting next week!
kyle.smith at owasp.org
Tue Sep 22 14:35:10 UTC 2015
Howdy Austin OWASPers!
Don't forget to register by noon on Friday 9/25 for the chapter meeting
OWASP Austin September Chapter Meeting, September 29th
When: Tuesday, September 29th @ 11:45 - 1PM
Title: Log Everything, even if it is just on local disks
Logs are as important as SQLi, XSS or Secure Coding! OWASP has a “Logging
Cheat Sheet”, and there are the “Windows Logging Cheat Sheet”, “Windows
PowerShell Logging Cheat Sheet”, “Windows Splunk Logging Cheat Sheet” and
several other I created, but we still lack an understanding of logging when
it comes to Application Security and DevOps.
Enabling and configuration of logs must become as basic and a standard
practice as doing WebApp security scans, secure code reviews or secure
webapp design, which should include application log design and
implementation. You don’t need an expensive log management solution to do
good application security or DevOps log configuration. What we need is to
include all our Cheat Sheets into DevOps builds so enabling and
configuration is baked in and to include a log design review as a part of
our application secure reviews. So WHEN we need log data, it is there for
Speaker: Michael Gough
Michael is the founder of "Malware Archaeology" and has 20 years experience
in IT and Information Security and currently in the Healthcare sector. In
the past Michael has been a consultant for HP and other consultancies, an
analyst for the Financial sector, Health Care and State of Texas. Michael
now focuses his talents as a Blue Team Defender, malwarian fighter and
malware archeologist, protecting his employer from nefarious
Michael also led BSides Texas with Michelle Klinger for 6 years and led the
BSides Austin conference held in March. Michael discovered the WinNTI
malware 10 months before Kasperski released their report. He also
discovered and exploited a major Card Key system flaw back in 2010 which
can be found on YouTube.
Michael is a creator of the Malware Management Framework, a process to help
discover malware on Windows based systems. Michael also developed the
“Windows Logging Cheat Sheet” to provide a starting point on detailed
logging for Windows hosts.
Michael's resources may be found on his website: MalwareArchaeology
Food: It will be a surprise! Please RSVP so we'll be sure to have enough
Only those who RSVP will be eligible for any drawings/giveaways that may
Location: National Instruments, 11500 N. Mopac.Building C
Or if you can not attend we should be broadcasting the meeting GoToMeeting
As always, chapter information can be found at: https://austin.owasp.org
and study group information at:
If you missed any of the monthly presentations, you can find them online in
our Vimeo channel: https://vimeo.com/channels/owaspaustin
and join our Linked Group: https://www.linkedin.com/grp/home?gid=1250897
Follow on twitter at @LASCONATX
If there are any questions about the chapter, its activities, or general
ideas please email me off list.
kyle.smith at owasp.org
OWASP Austin, chapter leader
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-austin