[Owasp-boston] Owasp-boston Digest, Vol 55, Issue 1

Loose Cannon lcstyle at gmail.com
Wed Sep 7 16:39:52 EDT 2011


Can anyone confirm the address for today's owasp meeting @ MS Waltham?

Not sure if I missed this somewhere else!

*Address:*
201 Jones Rd., Sixth Floor
Waltham, MA 02451
*Phone:* (781) 487-6400
*Fax:* (781) 487-6600



"We can't stop here, this is bat country!"
--Raoul Duke

GPG 4096 Bit Public Key
www.lcstyle.net/pubkey.asc



On Sat, Sep 3, 2011 at 8:18 AM, <owasp-boston-request at lists.owasp.org>wrote:

> Send Owasp-boston mailing list submissions to
>        owasp-boston at lists.owasp.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
>        https://lists.owasp.org/mailman/listinfo/owasp-boston
> or, via email, send a message with subject or body 'help' to
>        owasp-boston-request at lists.owasp.org
>
> You can reach the person managing the list at
>        owasp-boston-owner at lists.owasp.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Owasp-boston digest..."
>
>
> Today's Topics:
>
>   1. OWASP Boston two Sept mtgs - 7th at MS Waltham,   14th in
>      Boston (Weiler, Jim)
>   2. Re: OWASP Boston two Sept mtgs - 7th at MS Waltham, 14th in
>      Boston (HaoQi Li)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Fri, 2 Sep 2011 13:04:05 -0700
> From: "Weiler, Jim" <Jim.Weiler at starwoodhotels.com>
> Subject: [Owasp-boston] OWASP Boston two Sept mtgs - 7th at MS
>        Waltham,        14th in Boston
> To: <owasp-boston at lists.owasp.org>, <announcements-boston at naisg.org>
> Message-ID:
>        <DC5EB591689C7B478D9B310B08778D65BE6F61 at stcexcpmb03.corp.star>
> Content-Type: text/plain; charset="us-ascii"
>
> We'll be having 2 meetings this month -
>
>
>
> Wed. Sept 7 at MS Waltham  6:30
>
> Adriel Desautels -  Differences between Web Application Penetration
> Testing and Vulnerability Scanning
>
>
>
> Adriel T. Desautels is the President and CTO of Netragard, LLC. Among
> other things Adriel specializes in the delivery of advanced, high-threat
> anti-hacking services and covert network penetration methodologies.
> Prior to founding Netragard Adriel founded the internationally
> recognized SNOsoft Research Team, which quickly became the think tank
> for Secure Network Operations, Inc. Today SNOsoft is owned and operated
> by Netragard LLC.
>
> Adriel also has extensive experience and expertise in the design and
> deployment of sophisticated Intrusion Detection and Intrusion Prevention
> (IDS/IPS) systems. In early 2002 Adriel designed an IDS/IPS technology
> with powerful event correlation capabilities capable of accurately
> identifying real events buried in a high volume of noise. That
> technology was later acquired by a private third party. As a result of
> his expertise Adriel has acted as an expert witness in U.S. Federal
> Court.
>
> Today Adriel's responsibilities at Netragard include but are not limited
> to the design and management of all of Netragard's professional
> services. Adriel's secondary responsibility is to run and maintain
> Netragard's Exploit Acquisition Program (EAP). EAP is designed to
> acquire bleeding edge, high value research and intelligence from the
> hacking community
>
>
>
>
>
> Wed. Sept 14, Jobspring offices, 545 Boyleston St. 6th floor,  Boston
>
> Dinis Cruz
>
> OWASP O2 Platform
> Dinis Cruz
>
> The O2 Platform is focused on automating application security knowledge
> and workflows. It is specifically designed for developers and security
> consultants to be able to perform quick, effective and thorough source
> code-driven application security reviews (blackbox + whitebox). In
> addition to the manual findings created/discovered by security
> consultants, the OWASP O2 Platform allows the easy consumption of
> results from multiple OWASP projects and commercial scanning tools. This
> allows security consultants to find, exploit and automate (via Unit
> Tests) security vulnerabilities usually dismissed by the community as
> impossible to find/recreate. More importantly, it provides security
> consultants a mechanism to: (a) "talk" with developers (via UnitTest),
> (b) give developers a way to replicate + "check if it's fixed" the
> vulnerabilities reported and (c) engage in a two-way conversion on the
> best way to fix/remediate those vulnerabilities. For more details
> seehttps://www.owasp.org/index.php/OWASP_O2_Platform
> <https://www.owasp.org/index.php/OWASP_O2_Platform> , to download binary
> or source goto http://code.google.com/p/o2platform/downloads/list
> <http://code.google.com/p/o2platform/downloads/list>
>
> Bio
> Dinis Cruz is a Security Consultant based in London (UK) and specialized
> in: ASP.NET/J2EE Application Security, Application Security audits and
> .NET Security Curriculum Development.
> For the past couple years Dinis has focused on the field of Static
> Source Code Analysis and Dynamic Website Assessments (aka penetration
> testing), and is the main developer of the OWASP O2 Platform which is an
> Open Source project that is focused on 'Automating Security Consultants
> Knowledge/Workflows' and 'Allowing non-security experts to access and
> consume Security Knowledge'. Dinis is currently focused on making the O2
> Platform the industry standard for consuming, instrumenting and
> data-sharing between: the multiple WebAppSec tools, the Security
> consultants and the final users (from management to developers).
> (https://www.owasp.org/index.php/User:Dinis.cruz
> <https://www.owasp.org/index.php/User:Dinis.cruz> )
>
>
>
>
>
> Jim Weiler       CISSP   CSSLP   GSSP - Java
>
> Sr. Mgr.  Information Security Risk Assessment
>
> Starwood Hotels      1505 Washington St.   Braintree MA. 02184
>
> desk - 781 356 0067
>
> mobile - 7816546048
>
>
>
>
>
>
>
> Message: 2
> Date: Sat, 3 Sep 2011 20:18:05 +0800
> From: HaoQi Li <haoqili at mit.edu>
> Subject: Re: [Owasp-boston] OWASP Boston two Sept mtgs - 7th at MS
>        Waltham, 14th in Boston
> To: "Weiler, Jim" <Jim.Weiler at starwoodhotels.com>
> Cc: announcements-boston at naisg.org, owasp-boston at lists.owasp.org
> Message-ID:
>        <CABnD_WnipXtrPru9UGgnr3gBc8s3+Y=6pMtoUwMf7iyquKkLPQ at mail.gmail.com
> >
> Content-Type: text/plain; charset="windows-1252"
>
> Hi,
> I would like to attend the meetings, but I'm a student at MIT without a
> car.
> If anyone is driving from Cambridge, may I get a ride?
> Thanks.
> HaoQi
>
> On Sat, Sep 3, 2011 at 4:04 AM, Weiler, Jim
> <Jim.Weiler at starwoodhotels.com>wrote:
>
> >  We?ll be having 2 meetings this month ? ****
> >
> > ** **
> >
> > Wed. Sept 7 at MS Waltham  6:30****
> >
> > Adriel Desautels ?  Differences between Web Application Penetration
> Testing
> > and Vulnerability Scanning****
> >
> > ** **
> >
> > Adriel T. Desautels is the President and CTO of Netragard, LLC. Among
> other
> > things Adriel specializes in the delivery of advanced, high-threat
> > anti-hacking services and covert network penetration methodologies. Prior
> to
> > founding Netragard Adriel founded the internationally recognized SNOsoft
> > Research Team, which quickly became the think tank for Secure Network
> > Operations, Inc. Today SNOsoft is owned and operated by Netragard LLC.
> >
> > Adriel also has extensive experience and expertise in the design and
> > deployment of sophisticated Intrusion Detection and Intrusion Prevention
> > (IDS/IPS) systems. In early 2002 Adriel designed an IDS/IPS technology
> with
> > powerful event correlation capabilities capable of accurately identifying
> > real events buried in a high volume of noise. That technology was later
> > acquired by a private third party. As a result of his expertise Adriel
> has
> > acted as an expert witness in U.S. Federal Court.
> >
> > Today Adriel?s responsibilities at Netragard include but are not limited
> to
> > the design and management of all of Netragard?s professional services.
> > Adriel?s secondary responsibility is to run and maintain Netragard?s
> Exploit
> > Acquisition Program (EAP). EAP is designed to acquire bleeding edge, high
> > value research and intelligence from the hacking community****
> >
> > ** **
> >
> > ** **
> >
> > Wed. Sept 14, Jobspring offices, 545 Boyleston St. 6th floor,  Boston****
> >
> > Dinis Cruz****
> >
> > *OWASP O2 Platform*
> > *Dinis Cruz*****
> >
> > The O2 Platform is focused on automating application security knowledge
> and
> > workflows. It is specifically designed for developers and security
> > consultants to be able to perform quick, effective and thorough source
> > code-driven application security reviews (blackbox + whitebox). In
> addition
> > to the manual findings created/discovered by security consultants, the
> OWASP
> > O2 Platform allows the easy consumption of results from multiple OWASP
> > projects and commercial scanning tools. This allows security consultants
> to
> > find, exploit and automate (via Unit Tests) security vulnerabilities
> usually
> > dismissed by the community as impossible to find/recreate. More
> importantly,
> > it provides security consultants a mechanism to: (a) "talk" with
> developers
> > (via UnitTest), (b) give developers a way to replicate + "check if it's
> > fixed" the vulnerabilities reported and (c) engage in a two-way
> conversion
> > on the best way to fix/remediate those vulnerabilities. For more details
> see
> > https://www.owasp.org/index.php/OWASP_O2_Platform, to download binary or
> > source goto http://code.google.com/p/o2platform/downloads/list****
> >
> > *Bio*
> > Dinis Cruz is a Security Consultant based in London (UK) and specialized
> > in: ASP.NET/J2EE <http://asp.net/J2EE> Application Security, Application
> > Security audits and .NET Security Curriculum Development.
> > For the past couple years Dinis has focused on the field of Static Source
> > Code Analysis and Dynamic Website Assessments (aka penetration testing),
> and
> > is the main developer of the OWASP O2 Platform which is an Open Source
> > project that is focused on 'Automating Security Consultants
> > Knowledge/Workflows' and 'Allowing non-security experts to access and
> > consume Security Knowledge'. Dinis is currently focused on making the O2
> > Platform the industry standard for consuming, instrumenting and
> data-sharing
> > between: the multiple WebAppSec tools, the Security consultants and the
> > final users (from management to developers).
> > (https://www.owasp.org/index.php/User:Dinis.cruz)****
> >
> > ** **
> >
> > ** **
> >
> > Jim Weiler       CISSP   CSSLP   GSSP - Java****
> >
> > Sr. Mgr.  Information Security Risk Assessment****
> >
> > Starwood Hotels      1505 Washington St.   Braintree MA. 02184****
> >
> > desk - 781 356 0067****
> >
> > mobile - 7816546048****
> >
> > ** **
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-boston/attachments/20110907/81cf3451/attachment.html 


More information about the Owasp-boston mailing list