<div dir="ltr"><div><span style="color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background-color:initial">Hi all,</span><br></div><div><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px"></p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px">Tuesday July 28 will see the third of our free series of workshops based on  the OWASP Top 10 (2013) <a href="https://www.owasp.org/index.php/Top10" style="display:inline;color:rgb(57,135,203);text-decoration:none">https://www.owasp.org/index.php/Top10</a>. <span style="line-height:21.6000003814697px">This month we will be looking at Injection flaws which are #1 in the top 10. This is the top item as successful exploitation can lead to complete control of your systems by a malicious user. </span></p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px"></p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px">We will also be having our summer social event, with some free food and beer, after the talks - see below for more details.</p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px"></p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px"><span style="line-height:21.6000003814697px">Initially we will discuss how to identify injection vulnerabilities in your application, highlight the risks associated with injection flaws, provide some mitigation techniques and demonstrate how this all works. </span><br></p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px"><span style="line-height:21.6000003814697px">We will then go on to i</span><span style="line-height:21.6000003814697px">nvoke our learning from the first phase and put it to practical use. We take our testing environment and use it to exploit some injection vulnerabilities on a safe, intentionally vulnerable website.</span></p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px">Full details and registration on our meet-up page: <a href="http://www.meetup.com/OWASP-Cork/events/223564914/">http://www.meetup.com/OWASP-Cork/events/223564914/</a> </p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px">After the workshop we will go along to the Woolshed bar where we would like to treat you to some food, drinks and chats: (<a href="http://www.woolshedbaa.com/cork/)" style="display:inline;color:rgb(57,135,203);text-decoration:none">http://www.woolshedbaa.com/cork/)</a></p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px"></p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px">Hope to see you there!</p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px"></p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px">Darren & Fiona (OWASP Cork Team)</p><div><div class="gmail_signature"><div dir="ltr"><div><br></div><div><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px">Note: During the previous workshops we set up our machines. </p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px"></p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px">Anyone who has set up their machines during the last workshop can continue to use that and will have all tools in place, but if you have not, no problem, we can just set up the one or two main tools that we will need for that night. <span style="font-weight:700">If you would like some assistance in getting set-up then we will be there from 18:45 to help. Alternatively, you can contact one of the organisers (Fiona or Darren) in advance and we will let you know what you need. </span></p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px"></p><p style="margin:0px 0px 15px;padding:0px;border:none;color:rgba(0,0,0,0.670588);font-family:Whitney,helvetica,arial,sans-serif;font-size:16px;line-height:21.6000003814697px;background:0px 0px">If you would like to have ZAP installed on your machine you can get it here: <a href="https://github.com/zaproxy/zaproxy/wiki/Downloads" style="display:inline;color:rgb(57,135,203);text-decoration:none">ZAP Install</a>. Having a machine isn't a requirement for attending, there will be talks and demos as well as the practical elements.</p></div><div><br></div><div>Fiona Collins,</div><div>OWASP Cork Chapter Lead</div></div></div></div>
</div></div>