[Owasp-boston] 25% Off SourceBoston 2014 Registration

Roy Wattanasin roywatt at acm.org
Tue Apr 1 19:27:24 UTC 2014


The SourceBoston conference is right around the corner on April 8-10. This
year features an outstanding line-up of speakers and events.

Keynotes include internationally renowned security expert Bruce Schneier,
Justine Aitel, Head of Cyber Security and Identity for Dow Jones, and
Andrea Matwyshyn, who will discuss the legal implications of technology
innovation. We also have an A-list lineup of speakers, lock pick village,
CTF run by IOActive, and more.

It's going to be an exciting conference and we look forward to seeing
everyone there. More info at sourceconference.com.

We love to support professional InfoSec organizations. Register now and
receive a 25% OWASP discount!

The discount code is: *OWASP2014*


On Tue, Apr 1, 2014 at 2:57 PM, Patrick Laverty
<patrick.laverty at owasp.org>wrote:

> Hi all-
> On Wednesday April 16 at 6:30 pm, we will have Mordecai Kraushar to talk
> about the OWASP Broken Web Applications (BWA) Project. If you've ever
> wanted to learn how to research web application security vulnerabilities
> but don't know what site to practice on, then this talk is for you!
> The presentation will include a demonstration of some of the realistic,
> vulnerable web applications within the OWASP BWA project, including
> applications written in PERL, PHP and Rails.
> The presentation will demonstrate the many benefits of such vulnerable applications
> including:
> · Testing web application scanners (people)
> · Testing web application scanners (products)
> · Testing source code analysis tools
> · Examining code that allows the vulnerabilities
> · Testing web application firewalls
> · Reviewing evidence left by attacks
> Mordecai Kraushar is Director of Audit for CipherTechs, a security solutions
> company based in New York City. He leads an OWASP project called Vicnum,
> (it is part of the OWASPBWA project)  which demonstrates vulnerabilities
> such as cross-site scripting, SQL injections and session management
> issues that are helpful to IT auditors developing  web security skills.
>  This application has also been used in multiple 'capture the flag'
> challenges including the Breaking Bad CTF at AppSecUSA in New York this
> past November.
> https://www.owasp.org/index.php/OWASP_Broken_Web_Applications_Project
> The meeting will be held at Swipely (https://www.swipely.com), 10
> Dorrance St, 9th Floor at 6:30 pm. Please RSVP to
> patrick.laverty at owasp.org so the lobby security guard will let you up
> quickly.
> Lastly, May's meeting will be on May 7 and it will be about xssValidator. xssValidator
> is a tool developed to automate the testing and validation of Cross-Site
> Scripting (xss) vulnerabilities within web applications.
> Thanks all, hope to see you on the 16th!
> Patrick
> https://www.owasp.org/index.php/Rhode_Island
> _______________________________________________
> Owasp-boston mailing list
> Owasp-boston at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-boston
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-boston/attachments/20140401/c816d12a/attachment.html>

More information about the Owasp-boston mailing list