[Owasp-cincinnati] Upcoming June Meeting Updates
Marco M. Morana
marco.m.morana at gmail.com
Tue Jun 2 20:21:49 EDT 2009
OWASP Cincinnati members
I have the pleasure to announce the upcoming June meeting details:
a.. When: Tuesday, June 23rd, 12.00 - 1.30 PM
If you plan to attend the meeting please RSVP by email to Marco Morana (marco[dot]m[dot]morana[at]gmail[dot]com)
a.. The Web Hacking Incidents Database (WHID) - 2009 Analysis Ryan Barnett -Breach Security Inc
The web hacking incident database (WHID) is a Web Application Security Consortium project dedicated to maintaining a list of web applications related security incidents. WHID goal is to serve as a tool for raising awareness of the web application security problem and provide information for statistical analysis of web applications security incidents. The database is unique in tracking only media reported security incidents that can be associated with a web application security vulnerability. This presentation will highlight the statistics gathered from the 1st half of 2009 (January - June) and provide insight into categories such as: 1) Top Attack Methods, 2) Top Compromise Outcomes, 3) Top Target Geographic Region, 4) Top Vertical Markets Hit. The presenter will also provide some in-depth analysis for emerging threats/attack techniques such as planting of malware on websites and reflected cross-site scripting through sql injection.
a.. Presenter Bio
Ryan Barnett is the Director of Application Security Research at Breach Security where he leads Breach Security Labs. He is a Member of the Web Application Security Consortium (WASC) where he leads the Distributed Open Proxy Honeypot Project. He is also the leader of the OWASP ModSecurity Core Rule Set (CRS) Project which provides web application firewall rules to the public. Mr. Barnett is a frequent speaker at industry conferences such as Blackhat and he has also authored a web security book for Pearson Publishing entitled "Preventing Web Attacks with Apache."
a.. Location / Venue Sponsor: Citibank 9997 Carver Road, Bldg. 1, Cincinnati, Ohio, 45242-5537
For help with directions contact Citi Blue Ash help desk at (513) 979-9000 or check directions herein.
Please access the building from the visitor lobby. OWASP meetings are held at the "Buckeyes" lecture room.
a.. 12:00 - 12:30 Registration & Lunch (Courtesy of Breach Security)
b.. 12:30 - 1:30 Presentation
a.. Proof of ID is required to attend the meeting
Citi guards verify that you pre-registered to the meeting by checking the RSVP list. Once you are checked and identified (please bring a proof of ID) you will be granted visitor access to the training facilities.
a.. Presenter logistics
The lecture room is equipped with video and audio system to be used with the presenter's laptop. Presentations ( e.g. powerpoint, flash demos) can be uploaded and ran on a MS Windows XP loaded Citi owned laptop upon request. External internet connection is only provided from Citi owned laptops.
Please help spread the word about our OWASP chapter to collegues and anyone interested to learn more about application security.
OWASP Chapter Lead
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-cincinnati