[Owasp-cincinnati] OWASP June Meeting Next Tuesday

Marco M. Morana marco.m.morana at gmail.com
Fri Jun 19 08:00:20 EDT 2009


OWASP Cincinnati members

just to remind you about next week meeting.  If you plan to attend please RSVP by this Sunday by email me (to Marco Morana marco[dot]m[dot]morana[at]gmail[dot]com) 

The Web Hacking Incidents Database (WHID) - 2009 Analysis Ryan Barnett -Breach Security Inc 
The web hacking incident database (WHID) is a Web Application Security Consortium project dedicated to maintaining a list of web applications related security incidents. WHID goal is to serve as a tool for raising awareness of the web application security problem and provide information for statistical analysis of web applications security incidents. The database is unique in tracking only media reported security incidents that can be associated with a web application security vulnerability. This presentation will highlight the statistics gathered from the 1st half of 2009 (January - June) and provide insight into categories such as: 1) Top Attack Methods, 2) Top Compromise Outcomes, 3) Top Target Geographic Region, 4) Top Vertical Markets Hit. The presenter will also provide some in-depth analysis for emerging threats/attack techniques such as planting of malware on websites and reflected cross-site scripting through sql injection. 

Presenter Bio 
Ryan Barnett is the Director of Application Security Research at Breach Security where he leads Breach Security Labs. He is a Member of the Web Application Security Consortium (WASC) where he leads the Distributed Open Proxy Honeypot Project. He is also the leader of the OWASP ModSecurity Core Rule Set (CRS) Project which provides web application firewall rules to the public. Mr. Barnett is a frequent speaker at industry conferences such as Blackhat and he has also authored a web security book for Pearson Publishing entitled "Preventing Web Attacks with Apache." 

Location / Venue Sponsor: Citibank 9997 Carver Road, Bldg. 1, Cincinnati, Ohio, 45242-5537 
For help with directions contact Citi Blue Ash help desk at (513) 979-9000 or check directions herein. 
Please access the building from the visitor lobby. OWASP meetings are held at the "Buckeyes" lecture room. 

Agenda 
12:00 - 12:30 Registration & Lunch (Courtesy of Breach Security) 
12:30 - 1:30 Presentation 

Proof of ID is required to attend the meeting 
Citi guards verify that you pre-registered to the meeting by checking the RSVP list. Once you are checked and identified (please bring a proof of ID) you will be granted visitor access to the training facilities. 

Thanks

Marco M.
OWASP Chapter Lead
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-cincinnati/attachments/20090619/bde9b85b/attachment.html 


More information about the Owasp-cincinnati mailing list