[OWASP-Delhi] [Announcement] OWASP Delhi February 2018 Meet / February 24 (Sat) - 11 AM / Venue: Sapient, Gurgaon

Sandeep Singh sandeep.singh at owasp.org
Fri Feb 23 15:21:01 UTC 2018


Hi All,

Reminder for the meetup tomorrow.

The venue details are as below:

*Where: *Sapient Consulting
Unitech Infospace SEZ
Tower-B (Unit 1 Cafeteria), Building No-8
Sector 21,
Old Delhi - Gurgaon Road
Dundahera, Gurgaon 122016
Haryana, India

*Nearest Landmark: *Trident Hotel.(Straight from Trident Hotel towards
Dundahera Village and left from T Point, Unitech building will be on the
right. RBS and Amdocs offices are in the same complex.)

*Nearest Metro Stations:*

   - IndusInd Bank Cyber City Rapid Metro Station
   - MG Road Metro Station
   - Sikanderpur Metro Station

*Important Note - *Please carry an ID proof along with you which will be
required for Security check

Feel free to call in case of any doubts.

See you tomorrow!

Thanks
Sandeep



On Tue, Feb 20, 2018 at 5:45 PM, Vaibhav Gupta <vaibhav.gupta at owasp.org>
wrote:

> Hi All,
>
> A gentle reminder for Saturday's (24th Feb) meetup.
>
> *More Details and RSVP here: **https://null.co.in/events/420-delhi-null-delhi-meet-24-february-2018-combined-null-owasp-meet
> <https://null.co.in/events/420-delhi-null-delhi-meet-24-february-2018-combined-null-owasp-meet>*
>
> *Note - *All OWASP chapter meets are free and open to everyone. Prior
> RSVP is mandatory in order to be allowed to attend the meet.
>
> Thanks
> Vaibhav
>
> twitter.com/VaibhavGupta_1
>
> On Thu, Feb 15, 2018 at 1:26 AM, Sandeep Singh <sandeep.singh at owasp.org>
> wrote:
>
>> Hi All,
>>
>> Announcing the upcoming OWASP Delhi Chapter February meetup on February
>> 24, 2018 (Saturday) - 11:00 am onwards.
>>
>> *Note - *All OWASP chapter meets are free and open to everyone. Prior
>> RSVP is mandatory in order to be allowed to attend the meet.
>>
>> *Note - *This is a combined null Delhi and OWASP Delhi meet up
>>
>> *More Details and RSVP here: **https://null.co.in/events/420-delhi-null-delhi-meet-24-february-2018-combined-null-owasp-meet
>> <https://null.co.in/events/420-delhi-null-delhi-meet-24-february-2018-combined-null-owasp-meet>*
>>
>> *Details: *https://www.owasp.org/index.php/Delhi_NCR
>>
>> *Agenda:*
>>
>>    - Introductions and Chapter Updates
>>    - News Bytes & Discussions on Latest Infosec happenings
>>    - WiFi Security Beyond Password Cracking by Mohit Kumar Rajain
>>    - Networking Breaks
>>    - AppSec Testing Beyond Pen Test by Bhushan Gupta
>>    - Feedback and Next Meet Discussion
>>
>>
>> *When: *February 24, 2018 (Saturday) - 11:00 am onward (Please be on
>> time)
>>
>> *Where: *Sapient
>> Unitech Infospace SEZ
>> Tower-B (Unit 1 Cafeteria), Building No-8
>> Sector 21,
>> Old Delhi - Gurgaon Road
>> Dundahera, Gurgaon 122016
>> Haryana, India
>>
>> *How to reach venue: *Take Rapid Metro from Sikanderpur Metro station to
>> Vodafone Belvedere Towers (2nd Stop). A free shuttle operates from the
>> entry gate of the metro station to Udyog Vihar every 5 minutes. It drops at
>> exit gate no. 2 of Infospace. The shuttle takes around 15 minutes to reach
>> the venue.
>>
>> *Nearest Landmark: *Trident Hotel.(Straight from Trident Hotel towards
>> Dundahera Village and left from T Point, Unitech building will be on the
>> right. RBS and Amdocs offices are in the same complex.)
>>
>> *Nearest Metro Stations:*
>>
>>    - IndusInd Bank Cyber City Rapid Metro Station
>>    - MG Road Metro Station
>>    - Sikanderpur Metro Station
>>
>> *Important Note - *Please carry an ID proof along with you which will be
>> required for Security check
>>
>>
>> *Talk Details:*
>> ----------------------
>>
>> *Title: AppSec Testing Beyond Pen Test by Bhushan Gupta*
>>
>> *Abstract:* Web application security has a broad scope that spans from
>> network communication to browser behaviors to backend applications and
>> finally to database servers. Validating security of all these components
>> can be a daunting task and take a considerable effort. Penetration is the
>> most prevalent testing method used today for validating web application
>> security. The question is, “does it cover all the basis?” Penetration
>> testing is a black-box type testing that a QA engineer applies from the
>> hacker’s perspective. While it provides a comfort level, it does not ensure
>> that the application has been developed with security in mind and that it
>> meets the three basic requirements of security namely, Confidentiality,
>> Integrity, and Availability (CIA). The CIA framework builds intrinsic
>> security and thus ensures an increased confidence level. This framework
>> should be complemented with the penetration testing.
>>
>> This talk focuses on how to align the security validation of a web
>> application with the three basic elements of security namely,
>> Confidentiality, Integrity, and Availability (CIA). The test effectiveness
>> can be achieved by analyzing the requirements of each element and
>> identifying the potential breaches that can compromise each element. The
>> efficiency should be built by relating these breaches with the known OWASP
>> Top 10 and other vulnerabilities and, leveraging that knowledge to identify
>> the testing approach - static and dynamic throughout the SDLC.
>>
>> *Bio: *Bhushan Gupta is a Principal consultant at Gupta Consulting LLC.,
>> Bhushan Gupta is passionate about development methods and tools that yield
>> more secure web applications especially in the agile software development
>> environment. As a researcher, he has a keen interest in understanding and
>> applying fundamental principles and known methodologies to develop
>> dependable and secure software solutions. His interests extend to Social
>> Engineering and Attack Surface Analysis. Bhushan worked at Hewlett-Packard
>> for 13 years in various roles including software quality lead, engineer,
>> software process architect, and software productivity manager. He then
>> developed a strong interest in web application security while working as a
>> quality engineer for Nike Inc. Bhushan has been studying various facets of
>> web application security and promoting how to apply common sense approach
>> to build secure solutions. He is a certified Six Sigma Black Belt (HP and
>> ASQ) and an adjunct faculty member at the Oregon Institute of Technology in
>> Software Engineering. To learn more about Bhushan’s contributions to SDLC,
>> visit www.bgupta.com
>>
>> *Title: WiFi Security Beyond Password Cracking*
>>
>> *Abstract: *The speaker will demonstrate the following attacks on wifi
>> networks:
>>
>>    1. Packet injection in protocols such as DHCP, DNS, etc.
>>    2. Phishing wifi clients using captive portal
>>
>> *Bio: *Mohit is a Network security Enthusiast and Final Year Btech ( ECE
>> ) student @ NIT Delhi
>>
>> See you there.
>>
>> Thanks
>> Sandeep
>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-delhi/attachments/20180223/0d19df7f/attachment-0001.html>


More information about the OWASP-Delhi mailing list