[OWASP-Bangalore] [Reminder] Announcing null/OWASP/Garage4hackers/SecurityXploded Bangalore November meet-up on Saturday 16th November 2013

Akash akashmahajan at gmail.com
Fri Dec 13 12:28:55 UTC 2013

*Please note that all null meets are free for anyone to attend. There are
no fees and/or registration. Just come with an open mind and willingness to
share and learn.*

The schedule for this month's meet is as outlined below:

09:30 - 10:00:  Web Application Security for Beginners: Cross Site
Scripting - Prasanna K / Jayesh Singh
This is a multipart series on Web Application Security. This is the first
session and will cover the basics reflected and stored XSS. The session
will also cover filter bypasses and different XSS payloads in that context.

10:00 - 10:10:  Introductions

10:10 - 10:30:  News bytes - Mahanand Jha
A quick collection of security related news and events that occurred
between the last null meet and the 16th of November.

10:30 - 11:00:  Digital Privacy and Cyber Security - Michael Oghia [Public
Intelligence Project]
The speaker will not only discuss the dangers posed to Internet security or
to world democracy by surveillance, censorship and monitoring, but also:
1. Reiterate the importance of digital privacy and cyber security to the
success of democracy and the continued protection of free expression.
2. Encourage us to see ourselves as part of a larger system of democratic
governance and civic participation. This means understanding how technical
capabilities intersect with civil society, and then use them to advocate
for a more open, accessible, and private cyberspace.
3. Reinforce that digital media literacy education is vital to ensuring a
free, open, accessible, and democratic Internet.
Additionally, the speaker will present ideas and recommendations for what
we can do to engage with these problems, and how we can collaborate
together to address them.

11:00 - 11:20:  Networking and Break

11:20 - 12:00:  NSE Demo & Nmap Evasion Techniques - Sudhir Babu
This is a continuation of the Nmap Scripting Engine (NSE) talk from
October. The speaker will demo a NSE script and also discuss features and
switches in Nmap that can be used to evade network security devices.

12:00 - 12:20:  Feedback and Topic discussion for next month meet

12:20 - 13:40: Reversing & Decrypting the communication of APT traffic -
The speaker will reverse engineer a real world malware used in APT attack
and will show how strings are encrypted in memory to prevent string search,
how malware collects/encrypts system information and sends it to the
attackers and the techniques to detect the encryption algorithm and the key
used by the malware to communicate with the Command and control server. The
speaker will also show how to decrypt the communication of the malware with
its C2 server.

ThoughtWorks, Ground Floor, ACR Mansion,
147/f, 8th Main Road, 3rd Block, Koramangala,
Bangalore - 560034
Google Maps: http://goo.gl/bokSL

Landmark : Next to Satya's Bar and Mercure Hotel
+ If you are coming from From Inner Ring road get on to Ooty
Chocolates road and after a small crossroad this will be on the right
hand side.
+ If you are coming from the Raheja Residency road then take a left
turn at the small crossroad and this will be on your right hand side.
+ If you are coming from Koramanagala BDA complex take a right turn at
the small crossroad and this will be on your right hand side.

Warm regards,
Akash Mahajan

*That Web Application Security Guy* | +91 99 805 271 82
akashm.com | *@makash* on twitter | linkd.in/webappsecguy
*OWASP Bangalore Chapter Lead | null Community Manager*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-bangalore/attachments/20131213/4b74b553/attachment.html>

More information about the OWASP-Bangalore mailing list