[Owasp-ireland] Application Security Workshop and Talks

OWASP fiona.walsh at owasp.org
Mon May 13 09:28:25 UTC 2013


Good morning everyone,
 
I’m happy to announce that OWASP Dublin are hosting a joint event with Realex Payments in their Dublin office later this month.
 
There will be free application security training followed by two interesting security talks in the evening.
 
Training
Eoin Keary will be delivering free application security training between 2pm and 5pm on the 30th May. Eoin was the founder of OWASP Ireland and is currently the global vice chair for OWASP (amongst many other things!) He has delivered application security training to many developers and security professionals around the world and recently delivered a training course to over 400 people at the RSA Conference.
The training will focus on secure application development and why we can't hack ourselves secure. It will be covering why penetration testing on its own does not work approaches to improvement including "knowing what you don't know" and how to measure change.
It will be technical training covering XSS eradication, client side security and browser DOM curiosities.
 
Talks
The talks will be starting at 6pm in our office and OWASP have arranged two very interesting talks! Diarmaid McManushttps://twitter.com/elephant_rb from Realex Payments will be expanding his award winning SecurityBSides London Rookie Track talkhttps://www.securityninja.co.uk/application-security/securitybsides-london-esp-security-plugin/ to include more details about static analysis approaches and his research and development work on ESP: Security Plugin  https://github.com/diarmaid-mcmanus/ESPSecurityPlugin.
Hugh Pearse https://twitter.com/hughpearsewill be talking about Low Level Exploits and this looks like it will be a great talk:
“In 2010 Mr Haroon Meer from thinkst.compresented a timeline of memory corruption vulnerabilities and their mitigation techniques dating from 1985 to 2010. In his 35 page publication he referenced almost 150 events in low level information security history. The scope of the presentation "Low Level Exploits" is to explain in detail some of the most significant attacks in from Haroon Meers research. The attacks covered in this presentation include buffer overflows on the stack, heap overflows, integer overflows, format strings, null pointers and ROP chains. This brings us to exploits in the present day where researchers are looking for the successor of the buffer overflow attack, next big exploit.”
 
When and where?
The training and talks will be held in Realex Payment's Dublin office (address and map can be found here:http://www.realexpayments.com/about-realex/our-office-locations) on the 30th May.The training will start at 2pm so please aim to get to our office for 13:30 at the latest. The first talk will start at 6pm so please aim to get to our office for 17:30 at the latest.
 
How do I register for the training and the talks?
You will need to sign up via the OWASP Dublin Eventbrite page here:http://www.eventbrite.com/event/6665658163We do have a limited number of places available for both the training and the talks so sign up early to avoid disappointment!
 
We hope to see you in the Realex Payments office for OWASP Dublin on the 30th May. 

Fiona
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-ireland/attachments/20130513/c54cae28/attachment.html>


More information about the Owasp-ireland mailing list