[Owasp-austin] Chapter Meeting and LASCON, LASCON, LASCON!!

Kyle Smith kyle.smith at owasp.org
Tue Sep 29 01:08:37 UTC 2015


Howdy Austin OWASPers!

Don't forget about the chapter meeting tomorrow!  A local luminary will be
speaking on Logging -- Michael Gough.

----
OWASP Austin September Chapter Meeting, September 29th
When: Tuesday, September 29th @ 11:45 - 1PM

Title: Log Everything, even if it is just on local disks

Logs are as important as SQLi, XSS or Secure Coding! OWASP has a “Logging
Cheat Sheet”, and there are the “Windows Logging Cheat Sheet”, “Windows
PowerShell Logging Cheat Sheet”, “Windows Splunk Logging Cheat Sheet” and
several other I created, but we still lack an understanding of logging when
it comes to Application Security and DevOps.

Enabling and configuration of logs must become as basic and a standard
practice as doing WebApp security scans, secure code reviews or secure
webapp design, which should include application log design and
implementation. You don’t need an expensive log management solution to do
good application security or DevOps log configuration. What we need is to
include all our Cheat Sheets into DevOps builds so enabling and
configuration is baked in and to include a log design review as a part of
our application secure reviews. So WHEN we need log data, it is there for
us.

Speaker: Michael Gough

Michael is the founder of "Malware Archaeology" and has 20 years experience
in IT and Information Security and currently in the Healthcare sector. In
the past Michael has been a consultant for HP and other consultancies, an
analyst for the Financial sector, Health Care and State of Texas. Michael
now focuses his talents as a Blue Team Defender, malwarian fighter and
malware archeologist, protecting his employer from nefarious
ne`er-do-wellers.

Michael also led BSides Texas with Michelle Klinger for 6 years and led the
BSides Austin conference held in March. Michael discovered the WinNTI
malware 10 months before Kasperski released their report. He also
discovered and exploited a major Card Key system flaw back in 2010 which
can be found on YouTube.

Michael is a creator of the Malware Management Framework, a process to help
discover malware on Windows based systems. Michael also developed the
“Windows Logging Cheat Sheet” to provide a starting point on detailed
logging for Windows hosts.

Michael's resources may be found on his website: MalwareArchaeology

Location: National Instruments, 11500 N. Mopac.Building C

Or if you can not attend we should be broadcasting the meeting GoToMeeting
-- https://attendee.gotowebinar.com/register/6987803582755277570

RSVP: Closed!  Food has been ordered!

----

and in less then a month -- LASCON 2015!

Early bird has closed but regular tickets and TRAINING are available.  Go
check out the conference tracks at lascon2015.sched.org

Registration --  https://lascon.com

Go register! There are great training options at this great conference!

-----------------------

As always, chapter information can be found at: https://austin.owasp.org
and study group information at:
http://myowasp.ning.com/groups/austinowaspstudygroup
If you missed any of the monthly presentations, you can find them online in
our Vimeo channel: https://vimeo.com/channels/owaspaustin
and join our Linked Group:  https://www.linkedin.com/grp/home?gid=1250897
Follow on twitter at @LASCONATX

If there are any questions about the chapter, its activities, or general
ideas please email me off list.

-kyle
OWASP Austin, Chapter leader
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-austin/attachments/20150928/2dd2be87/attachment.html>


More information about the Owasp-austin mailing list