[Owasp-austin] OWASP Austin - upcoming events

Tiana Chandler tiana.chandler at owasp.org
Fri May 19 05:22:20 UTC 2017


Hello everyone!

I am sending this email to provide reminders of several upcoming events.
Note that these are also listed on the OWASP Austin Wiki page (
https://www.owasp.org/index.php/Austin).

------------------------------------------------------------

*OWASP Austin Chapter Meeting for May*

When: Tuesday, May 30th @ 11:45 AM - 1:00 PM

Where: National Instruments, 11500 N. Mopac.Building C

Title: Annoying web app vulnerabilities: HTTP Request Smuggling, HTTP
Response Splitting and Cross-Origin Resource Sharing Misconfigurations.

     Part 1:

Abstract: HTTP Request Smuggling is an attack capable of bypassing security
protections and "poisoning the well" for caching web proxies. In this talk
we'll be discussing attack scenarios and their security implications.

Speaker: Gabriel has been actively involved in the security industry since
2007 and currently holds the position of security analyst at Rapid7.


     Part 2:

Abstract: HTTP Response Splitting is a web application vulnerability that
is often misunderstood, but can lead to a serious compromise. This talk
will walk through the basics of Response Splitting, how an attack works,
and what you can do to defend against it.

Speaker: Ben Columbus is a security analyst for Rapid7, who specializes in
network and web application penetration testing. He has been working in
security for the last eight years in various positions and was previously a
penetration tester for the State of Texas.


     Part 3:

Abstract: The talk will provide information about headers used for
Cross-Origin Resource Sharing (CORS) and how servers use these headers to
communicate access policy to browsers. The possible security implications
of misconfigured CORS headers will be discussed.

Speaker: Jacob enjoys learning about security vulnerabilities and their
usage in the real world.


Food: Tacodeli. PLEASE RSVP ahead of time so we can be sure to have enough
for all!

Only those who RSVP will be eligible for any drawings/giveaways that may
take place!

RSVP: https://owasp-austin-2017-may.eventbrite.com

Or if you can not attend we should be broadcasting the meeting via
GoToMeeting: https://attendee.gotowebinar.com/register/245362995027357955

------------------------------------------------------------

*Austin Security Professionals Happy Hour for **June*

When: Thursday, June 8th, 5:00 pm - 7:00 pm

Where: Sherlock’s Baker St. Pub & Grill, 9012 Research Blvd, Austin, TX
78758 (corner of Hwy 183 and Burnet Rd). We meet in the large room to the
right as you walk in, normally on the far side of the room.

What: The Austin Security Professionals Happy Hour is a monthly event
coordinated by the OWASP Austin and Capital of Texas ISSA Chapters and
sponsored by various companies. We try to meet every second Thursday of the
month from January to September (but occasionally we make schedule
adjustments when needed). The event is an informal social gathering of
local information security professionals. If you're involved with InfoSec
or even if you have an interest, come on out for drinks, good food and
conversation.

Sponsor: Cyberbit

*CYBERBIT provides advanced cyber security solutions for high-risk,
high-value enterprises, critical infrastructure, military and government
organizations. The company’s portfolio provides a complete product suite
for detecting and mitigating attacks in the new, advanced threat landscape,
and helps organizations address the related operational challenges.
Cyberbit’s portfolio includes advanced endpoint detection and response
(EDR), SCADA network security and continuity, security incident response
platform, and security team training and simulation. Cyberbit’s products
were chosen by highly targeted industrial organizations around the world to
protect their networks. CYBERBIT is a wholly-owned subsidiary of Elbit
Systems Ltd. (NASDAQ and TASE: ESLT).*


RSVP: https://aus-sec-happy-hour-2017-06.eventbrite.com

------------------------------------------------------------

*LASCON 2017*

When: Thursday & Friday, October 26-27, 2017

Where: Norris Conference Center, 2525 W. Anderson Lane, Suite 365, Austin,
Texas 78757

What: The Lonestar Application Security Conference (LASCON) is an OWASP
conference held annually in Austin, TX. It is a gathering of 400+ web app
developers, security engineers, mobile developers and information security
professionals. LASCON is held in Texas where more Fortune 500 companies
call home than any other state, and is held in Austin which is a hub for
startups in the state of Texas. At LASCON, leaders at these companies along
with security architects and developers gather to share cutting-edge ideas,
initiatives, and technology advancements.

Register before June 1st to get the Early Bird discount:
https://lascon.org/tickets/

Want to present at LASCON?  Submit your presentation information on our CFP
site (https://cfp.lascon.org).  Submissions accepted until July 1st, 2017.

------------------------------------------------------------

Looking forward to seeing you all soon!

Thanks,

Tiana Chandler
OWASP Austin Chapter Leader
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-austin/attachments/20170519/e903ca51/attachment.html>


More information about the Owasp-austin mailing list