[OWASP-Columbia] OWASP Foundation | August 2016 Connector

Frank Catucci frank.catucci at owasp.org
Fri Sep 2 12:49:06 UTC 2016


<http://cts.vresp.com/fbl?e0ec9f05aa/d1c8dfd3bd/http%3A%2F%2Fhosted-p0.vresp.com%2F1479611%2Fe0ec9f05aa%2FARCHIVE%23like>
<http://cts.vresp.com/ts?e0ec9f05aa/d1c8dfd3bd/http%3A%2F%2Fapi.addthis.com%2Foexchange%2F0.8%2Fforward%2Ftwitter%2Foffer%3Ftemplate%3D%257B%257Btitle%257D%257D%2B%257B%257Burl%257D%257D%26url%3Dhttp%253A%252F%252Fhosted-p0.vresp.com%252F1479611%252Fe0ec9f05aa%252FARCHIVE%26shortener%3Dbitly%26title%3DOWASP%2BFoundation%2B%257C%2BAugust%2B2016%2BConnector>
<http://cts.vresp.com/ls?e0ec9f05aa/d1c8dfd3bd/http%3A%2F%2Fapi.addthis.com%2Foexchange%2F0.8%2Fforward%2Flinkedin%2Foffer%3Ftemplate%3D%257B%257Btitle%257D%257D%2B%257B%257Burl%257D%257D%26url%3Dhttp%253A%252F%252Fhosted-p0.vresp.com%252F1479611%252Fe0ec9f05aa%252FARCHIVE%26shortener%3Dbitly%26title%3DOWASP%2BFoundation%2B%257C%2BAugust%2B2016%2BConnector>
[image: OWASP Global Connector]

September 2, 2016 | www.owasp.org
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/b44798ef46>
| Contact Us
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/3c25c55ca5>
| Brought to you by the OWASP Foundation
[image: Communications] <#m_378136282356256740_CommunicationsHeading> Global
OWASP Foundation Board of Directors Election <#m_378136282356256740_BOARD> Meet
Matt Tesauro, OWASP's Senior Project Engineer
<#m_378136282356256740_MATT> OWASP
Podcasts <#m_378136282356256740_PODCASTS> [image: projects]
<#m_378136282356256740_Projects> OWASP Core Rule Set - New Release!
<#m_378136282356256740_TOOLSWATCH> New Project
<#m_378136282356256740_RELEASES> Project Releases
<#m_378136282356256740_PRRELEASES> Google Summer of Code Update
<#m_378136282356256740_GSOC> OWASP Project Summit USA 2016
<#m_378136282356256740_SUMMIT> OWASP Project Outreach in Africa
<#m_378136282356256740_OUTREACH> [image: Conference]
<#m_378136282356256740_ConferenceHeading> OWASP AppSec USA 2016
<#m_378136282356256740_GLOBAL> Open Calls for Papers
<#m_378136282356256740_CFP> Local and Regional Events
<#m_378136282356256740_LOCAL> Partner and Promotional Events
<#m_378136282356256740_PartnerEvents>
[image: chapters] <#m_378136282356256740_ChapterHeading> Chapter Activities
<#m_378136282356256740_ChapterActivity> [image: membership]
<#m_378136282356256740_MembershipHeading> New Contributing Corporate Members
<#m_378136282356256740_CorpRenew> Renewing Corporate Members
<#m_378136282356256740_CorpRenew> [image: Social Media]
<#m_378136282356256740_SocialHeading> OWASP Foundation Social Media
<#m_378136282356256740_Social>
------------------------------
[image: Communications]
*OWASP Communications*
Global OWASP Foundation Board of Directors Election

Elections for the 3 available board member seats for the 2017-2019 term
will be held in October. Board members are unpaid volunteers responsible
for setting the strategic direction of the organization and ensuring the
financial integrity of the OWASP Foundation. Detailed information on
meeting requirements, roles and responsibilities within the board, term
limits, and elections is found in the OWASP Foundation bylaws
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/9aa0b2d8b6>.
You can follow the past Board meetings and learn about the current focus of
the board on the Board page
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/f3058e3cbe>.


The current slate of candidates have been interviewed by Mark Miller
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/ec3188e273>
who asked the top questions submitted by the community in the Call for
Questions
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/738b948486=%22_blank%22>.


Every paid and honorary member of OWASP will have one vote per each of the
three sets in the election. Members must have be registered by September
30, 2016, so join today
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/6b8665eba1>
!

You can learn more about your candidates by clicking on their name (listed
in alphabetical order by first name):

   - Andrew van der Stock
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/31ab47989a>
   - Bil Corry
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/af69f57ab1>
   - Frank Catucci
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/5cca53237b>
   - Johanna Curiel
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/9766b755b6>
   - Martin Knobloch
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/cc94c554ca>
   - Matt Konda
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/307c4e94d6>
   - Milton Smith
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/c2bd1fe620>
   - Owen Pendlebury
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/7bb8f1a8df>
   - Simhalu "Sim" Kandala
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/86bba64007>
   - Steve Kosten
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/97a0285518>


Meet Matt Tesauro, OWASP's Senior Project Engineer

We are thrilled to announce that Matt Tesauro has joined the OWASP
Foundation staff as our Senior Project Engineer. Matt has been involved in
InfoSec for more than 15 years and a volunteer with OWASP since 2008 when
he created the OWASP Live CD Project for the first OWASP Summer of Code. He
evolved this project into the OWASP WTE
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/eb1fc7ad9b>
flagship project which he still runs. Additionally, Matt also co-leads
the OWASP
AppSec Pipeline project
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/748982cb5c>
and is a former OWASP Foundation Board member
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/a8125e3676>.


The primary focus of his new role is to reinvigorate the OWASP Projects and
bring automation and workflow improvements based on Agile and DevOps
principles. Matt will be splitting his time 60/40 between proactive process
improvements and operational items. As part of his interview process, Matt
was asked to provide his preliminary thoughts on improving OWASP projects;
check out his Vision for Change
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/aa13144836>.
The end goal is a healthy stable of projects which are simple for project
leaders to contribute to and easy for the AppSec community at large to use.

You can read the entire blog post HERE
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/e2f3ad755e>
OWASP Podcasts

OWASP Projects and activities are often the subject of webcasts and
podcasts. Sit back and relax as you watch and listen to these recent
episodes.

Security as Part of DevOps and Development
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/2a102c4d95>

DevOps, Security, and Engineering at Slack
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/fe74912450>

Update On the ASVS Project
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/1b84b0d9ef>

------------------------------
[image: projects]
*OWASP Projects*

OWASP Core Rule Set - New Release!

The OWASP Core Rule Set team is proud to announce the first of two planned
release candidates for the upcoming OWASP ModSecurity Core Rule Set v3.0.0.

This new release represents a huge step forward in terms of both
capabilities and protections including:

   - A 95% reduction in false positives for a typical CRS deployment using
   the default configuration.
   - Extended effectiveness and detection capabilities in numerous areas;
   namely Remote Command Execution and PHP injections (Walter Hop).
   - A simple to use, adjustable paranoia level that allows users to tailor
   their ruleset experience.
   - The capability to allow existing sites to try out the Core Rules by
   enabling the rules for only limited percentage of requests (Christian
   Folini).

Please see the CHANGES document
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/4bd1f544e5>
for a detailed list of new features and improvements.

The intent is for the Core Rules project used as a baseline security
feature, effectively fighting OWASP TOP 10 weaknesses with few side
effects. As such CRS attempt to cut down on false positives in the default
install. This RC1 therefore offers an opportunity for individuals to
provide feedback and to report any other issues they may face. CRS is no
longer aimed at ModSecurity experts. This is the Core Rules for the rest of
us.

Please use the CRS GitHub
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/df2fd2aff1>
or the Core Rules mailing list to tell us about your experiences, including
false positives or other issues with this release candidate. Our current
timeline is to seek public feedback on RC1 for the next month, followed by
an RC2 and subsequently a release.

For more information, please see the blog post
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/59b0230444>accompanying
this release.
New Project

OWASP Juice Shop Tool Project
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/7057e8f667>
is is an intentionally insecure webapp for security trainings written
entirely in Javascript which encompasses the entire OWASP Top Ten
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/662f8e3e61>
and other severe security flaws. Written in Node.js, Express and AngularJS,
Juice shop is the first application written entirely in JavaScript listed
in the OWASP VWA
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/b3c718e38a>
Directory. The application contains 28+ challenges of varying difficulty
where the user is supposed to exploit the underlying vulnerabilities. The
hacking progress is tracked on a scoreboard. Finding this scoreboard is
actually one of the (easy) challenges! Apart from the hacker and awareness
training use case, pentesting proxies or security scanners can use Juice
Shop as a "guinea pig"-application to check how well their tools cope with
Javascript-heavy application frontends and REST APIs.
Project Releases

*The OWASP Snakes & Ladders Project* has released v1.10EN of "OWASP Snakes
and Ladders - Web Applications". Snakes & Ladders is a simple educational
board game for all sizes of people, promoting awareness of application
security controls and risks, and in particular knowledge of other OWASP
documents and tools.

This release updates the virtuous behaviors (ladders) to the secure coding
practices defined in the 2016 version of the OWASP Top Ten Proactive
Controls. The print-ready PDF
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/a419cc387f>
is free to download.

We will produce other language versions as translations are provided. In
the meantime, please see v1.02 files for Deutsch, Español, Français,
Português Brasileiro, 日本語 and 中文
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/95a123e14a>

There is also a v1.02 edition for Mobile Apps.

*The OWASP dependency-check team* is pleased to announce the release of
version 1.4.0! See the release notes
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/c1c5f6fd4f>
for more information.

In addition to the 1.4.0 release an SBT dependency-check plugin
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/725009957f>
was created (thanks Alexander)!
Google Summer of Code Update

The 2016 Google Summer of Code
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/e7ee9b78a7>
is coming to a close. As part of our participation OWASP was given the
opportunity and funding to have 2 mentors attend the 2016 GSoC Mentor Summit
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/7a9bbbc97e>.
Congratulations to our raffle winners Konstantinos Papapanagiotou and
Andres Morales. Watch for the GSoC wrap up blog post coming soon!
OWASP Project Summit USA 2016

We are proud to announce the OWASP Project Summit USA 2016 taking
place at AppSecUSA
2016
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/dac5a144de>
October 11th and 12th. Part working session, part roundtable, the project
summit is an open forum setting for ideas, innovations, gain contributors
and share feedback for projects to advance to the next level. You can add
your own hot topics
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/f89c55ddbd>
to the discussion

   - Project Graduation Reviews
   - Implementation of Gamification and Badges for OWASP Projects
   - OWASP Code Project Bug Bounties
   - Discussion on OWASP Documentation Projects
   - Q&A OWASP Funding and Current Initiatives

Any individual interested in learning about projects or would like to work
on a project prior to the conference is welcome to come join at no charge.

Participating Projects will receive financial support through the
reimbursement process. Each project can receive $750 for air travel
assistance and 2 nights of accommodations during the Project Summit.
Project leaders receive a free ticket to the conference.

Participating projects must have been active in the last 9 months, have
complete and updated wiki page with clear road map, submit specific agenda
and deliverables. Must sign up
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/fac441389f>
by September 23.
Project Outreach in Africa

Munir Njiru
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/e3ad1662cd>
presented his project OWASP Mth3l3m3nt Framework
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/af154e6033>
at Africahackon 2016.
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/614566a3e9>

------------------------------
[image: Conference]
*OWASP Events*
OWASP AppSec USA 2016

OWASP's 13th Annual AppSecUSA Conference is just two months away, and we
have exciting event details to share.

AppSec USA 2016
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/d9db1214d4>
is taking place in Washington, DC, October 11-14. The event is comprised of
two days of training sessions followed by a two-day conference where
software security leaders, researchers and technologists discuss
cutting-edge ideas, initiatives and technological advancements to secure
web applications. This is also an opportunity for C-level executives
focused on improving the security posture of their organization to discuss
key challenges and priorities around their security programs, and learn
about the latest in security technology innovation.

This year's conference includes four inspirational keynote speakers who are
challenging traditions, including:

   - *Matthew Green,* respected cryptographer and security technologist
   with over fifteen years of industry experience in computer security. Dr.
   Green is an Assistant Professor of Computer Science at the Johns Hopkins
   Information Security Institute.
   - *Samy Kamkar,* privacy and security researcher, computer hacker,
   whistle blower and entrepreneur. At the age of 16, Mr. Kamkar co-founded
   Fonality. He is possibly best known for creating and releasing the fastest
   spreading virus of all time, the MySpace worm Samy.
   - *Joe Jarzombek,* former Director for Software Assurance in the
   National Cyber Security Division of the U.S. Department of Homeland
   Security (DHS). He led government inter-agency efforts with industry,
   academia, and standards organizations to shift the security paradigm away
   from patch management.
   - *Dan Geer,* CISO for In-Q-Tel. Mr. Geer was a key contributor to the
   development of the X Window System, as well as the Kerberos authentication
   protocol while a member of the Athena Project at MIT in the 1980s. Shortly
   after, he created the first information security consulting firm on Wall
   Street.

In addition to the above key notes, there will be multiple other program
sessions
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/fec85267fe>
taking place with renowned speakers
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/283c089da0>
from well-known companies, including: Scott Behrens, senior application
security engineer for Netflix, Christian Frichot of LinkedIn, Chris Gates,
senior security engineer for Uber, Brian Manifold, software/security
engineer for Cisco and many more.

For more information about AppSecUSA 2016, including the complete program
and speakers, or to register online, please visit the website.
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/b1541b3345>
Open Calls for Papers

Summertime is a HOT time for OWASP! Check out this blog post
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/0744614538>
listing all the open CFP.

Regional and Local Events ArmSec
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/f0b8c64885>:
September 16 - September 17, 2016, Armenia

Boston Application Security Conference (BASC)
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/e287268d6f>:
October 1, 2016, Boston, MA

OWASP Bucharest AppSec Conference
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/86fcdcb230>:
October 6, 2016, Bucharest, Romania

Lonestar Application Security Conference (LASCON)
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/42ca44fc23>:
November 1 - November 4, 2016, Austin, TX

OWASP Middle East Cyber Security Conference, 2017
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/8e241d4c9a>:
May 3 - May 4, 2017, Dubai, UAE

Partner and Promotional Events

OWASP will have a booth at JavaOne 2016
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/a61fbfb9ae>
in San Francisco, CA, September 18 - 22, 2016. All project leaders are
invited to apply for the opportunity to demo their project at the event.
Winners will receive a ticket to the event (valued at $2,000) and $500 to
defray travel costs. There are only 2 spots available so hurry and apply!
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/3c7b7469cd>
Applications must be submitted by September 1st.

We also have unlimited staff passes available for anyone who wishes to
staff the booth and explore the expo area. To take advantage of these
passes please contact Kelly Santalucia <kelly.santalucia at owasp.org> and Claudia
Aviles-Casanovas.
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/612de44da5>

ONE2ONE SUMMIT
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/5a2f9347af>:
September 14 - September 17, 2016, Colombia

BSides Colombia
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/6f28c27d29>:
September 14 - September 16, 2016, Boca Beach Club, Boca Raton, FL

* Cyber Security Summit New York
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/208c858fd1>:
September 21, 2016, Grand Hyatt, New York

* (ISC)2 Secure CEE
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/ee907a1000>:
September 27, Prague, Czech Republic

New York Metro Joint Cyber Security Conference
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/8085ce794e>:
October 5, 2016, New York, NY

* (ISC)2 Secure Johannesburg
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/f57d87c038>:
October 6, 2016, Johannesburg

Edge 2016 Security Conference
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/5a03bc5e93>:
October 18 - 19, 2016, Knoxville, TN

(ISC)2 Security Congress EMEA 2016
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/78ecdbb3cf>:
October 18-19, 2016, Croke Park Stadium Dublin, Ireland

* IoT Tech Expo North America, 2016
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/ca4d20dd43>:
October 20 - 21, 2016, Santa Clara, CA

* Ekoparty Security Conference
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/80ee477b05>:
October 24 - 28, 2016, Buenos Aires

* Cyber Security Summit Los Angeles
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/5514293ee8>:
October 27, 2016, Fairmont Miramar Hotel

ZeroNights 2016
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/ee40904e5b>:
November 17 - 18, 2016, Moscow, Russia

* (ISC)2 Secure Dubai
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/9a3510c315>:
November 22, 2016, Dubai

* (ISC)2 Secure London
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/1763526dba>:
December 6, 2016, London

* (ISC)2 Secure Croatia
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/5fd93a17b9>:
December 15, 2016, Croatia

* IoT Tech Expo Global, 2017
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/d8daacb903>:
January 23 - 24, 2017, Olympia, London

CyberCentral
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/5bead7e0b6>:
April 4 - April 6, 2017, Prague, Czech Republic



** CLICK HERE
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/efe53a4541>
to see special discounts for OWASP members.*
------------------------------
------------------------------
[image: chapters]
*OWASP Chapters*
Notable Chapter Activity

The OWASP Taguig Chapter
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/94271f3ed7>
held a Tech Training Session covering Understanding CSRF, Email Harvesting
and Phishing Frameworks, Sandboxing, and Malware Analysis. The audience was
a mix of civilian and military members. This is part of the inter-chapter
research and development that our Filipino chapters are conducting. Their
topics include: Malware Intelligence, Static Malware Analysis, and
Automated Multi-scanner Malware.

The Jaipur chapter
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/8f3365499d>
hosted OWASP-Jaipur Cyber Square Summit at The LNM Institute of Information
Technology on 28th August, 2016. The event attracted 300 people from all
over India to its 10 talks.

Vlad Cotenescu, Andrei Jurca and Cosmin Ilie and Oana Cornea, members of
the Bucharest chapter
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/d05e3ac0d9>
represented OWASP at the 2016 Dev Talks in Bucharest. Their team acquainted
developers with strategic projects such as OWASP Zed Attack Proxy, OWASP
Testing Guide, OWASP OWTF and OWASP Dependency Check. Thanks for to for the
awesome developer outreach!

*Share Your Stories!*

We at the OWASP Global Foundation are looking forward to hearing about more
such events in future. Share your chapter's successes! Submit your stories
to support at owasp.org

OWASP Membership is a great way to contribute to our local chapters and
projects. A portion of your membership can be allocated to the chapter
and/or project of your choice. Please show your support for OWASP Projects
and Chapters by becoming an Individual or Corporate member today!
------------------------------
[image: Membership]
*OWASP Membership*
New Contributing Corporate Members

   - Onward Security Corporation

Renewed Corporate Members (Premier Level)

   - CipherTechs, Inc
   - IMMUN.IO
   - Credit Karma, Inc
   - Virsec Systems, Inc.

Renewed Corporate Members

   - *Salesforce*(Premier Level)
   - ThoughtWorks, Ltd. (Contributor Level)
   - SCSK Corporation (Contributor Level)
   - Sonatype (Contributor Level)

Your name here? Find out how by visiting our Corporate Supporters
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/faf2c8ef8f>
information page.

Thanks to all of our Premier and Contributing Corporate Members
<http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/3ed5698969>
for your support in 2015!
------------------------------
[image: Social Media]
*OWASP Social Media*
OWASP Social Media Site

   - OWASP YouTube Channel
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/8600aa73e0>
   - LinkedIn
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/8ab542ffcc>
   - Twitter
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/bf0a6171c2>
   - Google +
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/11bc02cda0>
   - Facebook
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/96251428b0>
   - Ning
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/90dde804d1>
   - StackOverflow
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/52ba058d8d/tab=newest&q=owasp>
   - GitHub
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/8529ba4f36>
   - Trello
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/16d28e9597>
   - Slack
   <http://cts.vresp.com/c/?TheOWASPFoundation/e0ec9f05aa/d1c8dfd3bd/f985606533>



------------------------------
Click to view this email in a browser
<http://hosted.verticalresponse.com/1479611/e0ec9f05aa/543936139/d1c8dfd3bd/>

If you no longer wish to receive these emails, please reply to this message
with "Unsubscribe" in the subject line or simply click on the following
link: Unsubscribe <http://cts.vresp.com/u?e0ec9f05aa/d1c8dfd3bd/mlpftw>
------------------------------
The OWASP Foundation
1200-C Agora Drive
#232
Bel Air, Maryland 21014
US
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-columbia/attachments/20160902/36063800/attachment-0001.html>


More information about the OWASP-Columbia mailing list