[Owasp-ireland] Reminder - Next OWASP Ireland meeting Friday 19th of February

Fabio Cerullo fcerullo at owasp.org
Mon Feb 8 02:33:43 EST 2010


Hello everyone,

This is a reminder for the forthcoming OWASP Ireland chapter meeting to be
held on February 19th, at 3:00pm-5:00pm (show up at venue between
2:30pm-3:00pm).

As usual our location are the Ernst & Young offices in Dublin who kindly
agreed to host our event:

- Ernst & Young, Harcourt Street, Dublin 2, Opposite the Odeon Pub, Dublin,
Ireland

Google Map location here:

http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=harcourt+street,+dublin&sll=37.0625,-95.677068&sspn=33.160552,79.013672&ie=UTF8&hq=&hnear=Harcourt+St,+Dublin,+County+Dublin+City,+Ireland&ll=53.333417,-6.262588&spn=0.00305,0.009645&t=h&z=17

As last time, we should have plenty of time to have a talk and a few drinks
afterwards.

If you are planning to attend you must RSVP at
 http://owasp-ireland.eventbrite.com <http://owasp-ireland.eventbrite.com/>.
Note, please enter your real name, as this will be given to Ernst & Young
building security. If you don't RSVP, you may not be let into the building.
Also note that RSVPs close midday the day ofthe event (so we can get names
on the door), so make sure you RSVP in
advance.
IMPORTANT: Certificates of attendance will only be provided to those who
register at http://owasp-ireland.eventbrite.com.

Also, if you are no longer able to attend, please email any of us below so
your space can be released for someone else.

Fabio at fcerullo at owasp.org

Eoin at eoin.keary at owasp.org <eoin.keary at owasp.org>

Rahim at rahim.jina at owasp.org
Further details and schedule for the night will be available on the chapter
page ( https://www.owasp.org/index.php/Ireland ).

See you there!

Fabio


*==Talk==*

*Title:* OWASP O2 Platform - Open Platform for automating application
security knowledge and workflows

*Abstract: *In this talk Dinis Cruz will show the OWASP O2 Platform which is
an open source toolkit specifically designed for developers and security
consultants to be able to perform quick, effective and thorough
'source-code-driven' application security reviews. The OWASP O2 Platform (
http://www.owasp.org/index.php/OWASP_O2_Platform) consumes results from the
scanning engines from Ounce Labs, Microsoft's CAT.NET tool, FindBugs,
CodeCrawler and AppScan DE, and also provides limited support for Fortify
and OWASP WebScarab dumps. In the past, there has been a very healthy
skepticism on the usability of Source Code analysis engines to find commonly
found vulnerablities in real world applications. This presentation will show
that with some creative and powerful tools, it IS possible to use O2 to
discover those issues. This presentation will also show O2's advanced
support for Struts and Spring MVC.

*==Presenter==*

Dinis Cruz is a Security Consultant based in London (UK) and specialized
in: ASP.NET/J2EE <http://asp.net/J2EE> Application Security, Application
Security audits and .NET Security Curriculum Development. For the past years
Dinis has focused on the field of Static Source Code analysis, from May 2007
to Dec 2009 he worked as a independent consultant for Ounce Labs (bought by
IBM in July 2009) where during active security engagements using Ounce's
technology he developed the Open Source codebase which now is the foundation
of the OWASP O2 Platform. Dinis is currently focused on making the O2
Platform the industry standard for consuming, instrumenting and data-sharing
between the multiple WebAppSec tools, the Security consultants and the final
developers. Dinis is a also active trainer on .Net security having written
and delivered courses for IOActive, Foundstone, Intense School and KPMG (at
multiple locations including BlackHat), and has delivered a number of
presentations and keynote speeches at multiple OWASP and Security related
conferences. At OWASP, Dinis is the leader of the OWASP O2
Platform<http://index.php/OWASP_O2_Platform> project,
member of the OWASP Global Projects
Committee<http://index.php/Global_Projects_Committee>,
chair of the OWASP Connections
Committee<http://index.php/OWASP_Connections_Committee> and
member of the OWASP
Board<http://index.php/About_The_Open_Web_Application_Security_Project#Global_Board_Members>.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-ireland/attachments/20100208/c2340c03/attachment.html 


More information about the Owasp-ireland mailing list