[Owasp-orlando] OWASP Orlando Q3 2012 Meeting September 12

Tony Turner tony.turner at owasp.org
Tue Sep 11 20:29:27 UTC 2012


Good afternoon OWASP Orlando!

Just a reminder folks if you have not registered yet please do so in order
for us to get an accurate head count for food.

See you tomorrow night!

-Tony

On Tue, Aug 14, 2012 at 3:26 PM, Tony Turner <tony.turner at owasp.org> wrote:

> Good afternoon OWASP Orlando,
>
> We have posted details of our September 12th meeting at
> https://www.owasp.org/index.php/Orlando. I also wanted to announce that
> Symantec has once again become an organizational supporter for the OWASP
> parent organization and this time has allocated a portion of the funds
> ($1000) to our local chapter. Thanks so much Symantec!  I also wanted to
> thank the UCF College of Medicine for their support so far. Without their
> assistance none of this would be possible. Due to support issues with
> Regonline we are back to using Eventbrite for events and will be using
> Cvent for any donation related transactions. For those of you interested in
> the various membership options, you can check out
> https://www.owasp.org/index.php/Membership for more info.
>
> We have also received some feedback regarding our meeting location and
> many have complained it was too far to drive. For Q3 this will remain
> unchanged and we greatly appreciate the assistance Kevin Smith and UCF has
> provided in hosting our meeting. However, we would be remiss if we did not
> try to accommodate everyone so I'm asking for your assistance in
> identifying alternate locations, preferably university settings since they
> are neutral ground and mesh well with our strategic goals of academic
> alliance. If you have ideas please send Bill or I an email and we will try
> to work on a more central location for future meetings. We do listen to the
> feedback we receive and welcome your comments, be they good or bad.
>
> Now on to the details of our next meeting.
>
>
>    - Meeting Date: September 12, 2012 6:00 - 8:00 PM (or until we decide
>    to go home)
>    - Meeting Location: UCF College of Medicine
>    - Google maps link: http://goo.gl/ztZTF
>
>
> Registration link at http://owasp-orlando.eventbrite.com/
>
>
> *Q3 2012 Meeting September 12*
>
> *5:45 - 6:00 Arrive*
>
> *6:00 - 6:15 Welcome and Opening Remarks / Appsec Trivia*
>
> *6:15 - 7:00 "An Insider's Look: WAF and Identity and Access Management
> Integration"* - Jan Poczobutt, Director of Enterprise ADC & WAF Sales at
> Barracuda Networks, will provide an inside look at some of the problems
> with traditional access management implementations and how enterprises can
> sucessfully overcome these challenges by integrating web application
> firewall technologies with Identity and Access Management. Learn about best
> practices, specific use cases and how this new integration translates into
> operational simplicity for the enterprise.
>
> *7:00 - 7:15 Break*
>
> *7:15 - 8:00+ "Don't Drop the SOAP: Real World Web Service Testing for
> Web Hackers"* - Over the years web services have become an integral part
> of web and mobile applications. From critical business applications like
> SAP to mobile applications used by millions, web services are becoming more
> of an attack vector than ever before. Unfortunately, penetration testers
> haven't kept up with the popularity of web services, recent advancements in
> web service technology, testing methodologies and tools. In fact, most of
> the methodologies and tools currently available either don't work properly,
> are poorly designed or don't fully test for real world web service
> vulnerabilities. In addition, environments for testing web service tools
> and attack techniques have been limited to home grown solutions or worse
> yet, production environments.
>
>
> In this presentation Kevin Johnson will discuss the new security issues
> with web services and discuss an updated web service testing methodology
> released at Defcon 19 last year that will be integrated into the OWASP
> testing guide, new Metasploit modules and exploits for attacking web
> services and an open source vulnerable web service for the Samurai-WTF (Web
> Testing Framework) that can be used by penetration testers to test web
> service attack tools and techniques.
>
>
>
>    - Kevin Johnson is a security consultant and founder of Secure Ideas.
>    Kevin came to security from a development and system administration
>    background. He has many years of experience performing security services
>    for fortune 100 companies, and in his spare time he contributes to a large
>    number of open source security projects. Kevin's involvement in open-source
>    projects is spread across a number of projects and efforts. He is the
>    founder of many different projects and has worked on others. He founded
>    BASE, which is a Web front-end for Snort analysis. He also founded and
>    continues to lead the SamuraiWTF live DVD. This is a live environment
>    focused on Web penetration testing. He also founded Yokoso and Laudanum,
>    which are focused on exploit delivery. Kevin is a certified instructor for
>    SANS and the author of Security 542: Web Application Penetration Testing
>    and Ethical Hacking. He also presents at industry events, including DEFCON
>    and ShmooCon, and for various organizations, like Infragard, ISACA, ISSA,
>    and the University of Florida.
>
> Twitter: @secureideas
>
> We do not currently have a sponsor for this event but refreshments will be
> provided out of chapter funds. If you are interested in sponsoring please
> contact tony.turner at owasp.org
>
> University of Central Florida has graciously agreed to provide meeting
> space at the Medical College campus.
>
>
> College of Medicine 6850 Lake Nona Blvd. Orlando, FL 32827
>
>
> UCF College of Medicine Directions<http://med.ucf.edu/media/2011/08/directions_newcampus1.pdf>
>
>
> Park in the lot labeled on the map P3 and enter through the front of the
> COM building. This is a "U" shaped building facing Lake Nona Blvd. Once you
> enter the front doors, go down the hall to the left and you will see OWASP
> members directing folks to the meeting room on the right hand side. If you
> have questions please email me or bill.riggins at owasp.org
>
> --
> Tony Turner
> OWASP Orlando Chapter Founder/Co-Leader
> tony.turner at owasp.org
> https://www.owasp.org/index.php/Orlando
>
>
>


-- 
Tony Turner
OWASP Orlando Chapter Founder/Co-Leader
tony.turner at owasp.org
https://www.owasp.org/index.php/Orlando
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-orlando/attachments/20120911/4bf0c967/attachment.html>


More information about the Owasp-orlando mailing list