[Owasp-board] Fwd: [Owasp-o2-platform] OWASP/O2 US Tour Aug 9-17 (6 cities in 8 days)

dinis cruz dinis.cruz at owasp.org
Wed Aug 25 21:26:12 UTC 2010

Now that you are getting in the groove of these OWASP Tours, here are a
number of great ideas from John Steven on what a more 'work on the road'
type of Tour would look like


---------- Forwarded message ----------
From: John Steven <jsteven at cigital.com>
Date: 9 August 2010 12:53
Subject: Re: [Owasp-o2-platform] OWASP/O2 US Tour Aug 9-17 (6 cities in 8
To: dinis cruz <dinis.cruz at owasp.org>
Cc: "owasp-leaders at lists.owasp.org" <owasp-leaders at lists.owasp.org>,
owasp-connections-committee <owasp-connections-committee at lists.owasp.org>,
"OWASP .NET" <owasp-dotnet at lists.owasp.org>, "
owasp-o2-platform at lists.owasp.org" <owasp-o2-platform at lists.owasp.org>


A tour of five or so people would be really interesting. The "No Fluff Just
Stuff" Java tour would be a good model: speakers are hand-selected for
technical capabilities and each conference is designed to be more like a
working session than a series of talks/paid-training. Think about what
happened last time you visited me--you got a spot of code to go home with
for O2.

I suggest the following:

* Select a set of 5-10 speakers that can credibly conduct application
assessment but who also write automation.
* Each speaker must sign up for at least 1-2 or 2/3 of the dates to ensure
* Present topics ranging from the often separated penetration testing to
code review to dynamic patch configuration, and hit the whole ecosystem of
testing techniques facilitated by the O2 platform: program understanding &
discovery --> Assessment --> Unit test production --> Patch creation.
* Configure the cost of the tour to be accessible to chapters but to aim at
breaking even on the tour-participants travel reimbursement.
* (From Ireland) Produce round-robin O2 training speaker-selections from the
quorum to deliver O2 training at major OWASP conferences, freeing you up to
do more advanced demos prototypes more accessibly

I would love to be a part of the above. Our NoVA chapter would, of course,
love to be a sponsoring venue.

John Steven
Senior Director; Advanced Technology Consulting
Desk: 703.404.9293 x1204 Cell: 703.727.4034
Key fingerprint = 4772 F7F3 1019 4668 62AD  94B0 AE7F EEF4 62D5 F908

Blog: http://www.cigital.com/justiceleague
Papers: http://www.cigital.com/papers/jsteven
Software Confidence. Achieved.

On Aug 9, 2010, at 4:15 AM, dinis cruz wrote:

> <LOGO.png>
> Hi I'm about to embark on a great adventure and I hope you will be able to
join me along the way.
> For the next 8 days I will be traveling to 6 US cities, visiting the local
OWASP chapter and doing OWASP/O2 presentations. This is also a great
opportunity to meet a number of local chapter/project leaders and have a
number of brainstorming sessions on OWASP.
> Here is my itinerary:
> Mon 9th: NYC http://www.owasp.org/index.php/NYNJMetro
> Tue 10th: Minneapolis http://www.owasp.org/index.php/Minneapolis_St_Paul
> Wed 11th: Seatle http://www.owasp.org/index.php/Seattle
> Thu 12th: Atlanta
> Fri 13th: San Antonio http://www.owasp.org/index.php/San_Antonio
> Sat 14th: San Antonio
> Sun 15th: Washington DC
> Mon 16: Washington DC , Virginia (TBC)
> Tue 17: Washington DC
> If you are around this area and want to meet up to talk about OWASP or O2,
then ping me directly and lets make it happen
> This the first of many OWASP Tours, and hopefully the last that I (or
another OWASP leader) will do it alone (wouldn't it be great to do this in a
group of 5 or 10 OWASPers :)  )
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20100825/f63090f2/attachment-0002.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2581 bytes
Desc: not available
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20100825/f63090f2/attachment-0002.bin>

More information about the Owasp-board mailing list