[Owasp-sanfran] OWASP San Francisco Membership Drive April 18th!

Brian Christian bchristian at spidynamics.com
Fri Apr 13 09:53:31 EDT 2007

Hello All!,


With all the success that we've seen with the meetings recently, I
invite you all to attend the OWASP San Francisco City Chapters 1st
Annual Membership Drive! We are going to hold it in a little bigger
facilities this time (South Beach Yacht Club * Pier 40 on The
Embarcadero * San Francisco, CA 94107 * (415) 495-2295, see below for
directions) and I got some people to sponsor Food and Beverages (Beer,
Soda, etc) AND as an added Bonus, FREE PARKING! Yes that's right, we
have 50 parking spaces available for the first 50 people to attend, so
bring a friend, or 4 to sign up for the OWASP City chapter meetings. As
an added Bonus to free food, free drinks, free parking... we have free
stuff! Yes the first 25 people will receive one of our speakers new
book, Caleb Simas www.webhackingexposed.com.


PLEASE RSVP TO BCHRISTIAN at SPIDYNAMICS.COM if you are attending with the
Subject RSVP so we can get an accurate head count.



WHAT: San Francisco OWASP Chapter Meeting and 1st Annual Membership

WHEN: Wednesday, April 18th, 2007 

5:00-6:30 Social (Food and Drinks) and Chapter Announcements 

6:30-7:30 Presentation and Q and A - Caleb Sima, Co-Founder and CTO SPI
Dynamics, Application Security Analysis: Ensuring Your Code is Secure

7:30-8:30 Presentation and Q and A - Kartik Trivedi, Director Accuvant.
AJAX and Web 2.0 vulnerabilities

WHERE: South Beach Yacht Club * Pier 40 on The Embarcadero * San
Francisco, CA 94107 * (415) 495-2295.
(http://www.southbeachyc.org/images/p2_sbyc_map.gif ) There will be 50
parking spaces allocated for us so parking is FREE!




Caleb Sima, Co-founder and CTO - Application Security Analysis: Ensuring
Your Code is Secure


Understand the top Web application vulnerabilities and the risks they

Learn the difference between source code analysis and black box testing
and how the two combined can increase accuracy of discovering security

Establish strategies to identify and eliminate vulnerabilities in
existing web applications. 

Determine how to embed security into the software development lifecycle
to prevent attacks. 

Develop strategies for Web application audits


First 20 people will receive an autographed copy of Caleb's book!

Caleb is widely known within the Internet security community for his
expertise in penetration testing and his ability to identify emerging
security threats. He began his security career at the S1 Corporation in
1996. Caleb then joined Internet Security Systems as a member of the
X-Force, where he focused on the research and development of security
advisories for ISS. Some of his engineered exploits have gained media
attention in publications such as the New York Times and the Washington
Post. He has also been featured in US News and World Report and Security
World magazine.


Kartik Trivedi - "Web 2.0 Security "


Kartik Trivedi, a recognized software security expert is the director of
application security at Accuvant. Accuvant is a leading national
security consulting organization that designs and executes strategies to
address its clients' complex information security challenges. Kartik's
role is to build and create a world class strategic software security


Kartik has more than a decade of experience working in the software and
security industry. Prior to joining Accuvant, Kartik was a managing
consultant and lead instructor at Foundstone - a division of McAfee,
Inc. He was the service line owner of web application security and code
review practices. Under his leadership, the services became profitable
and grew to generate more than 30% of Foundstone's professional
services' annual revenue. He has performed security roadmap planning,
risk assessment, threat analysis, application assessments, code reviews,
network penetration tests, secure SDLC and wireless reviews for large
number of fortune 500 clients. Kartik instructed the Ultimate Hacking
and secure software development classes. He was the recipient of the
McAfee president's club award 2005 for exceptional performance. 


Prior to Foundstone, Kartik worked as a software development engineer
with Concept Solutions. He was responsible for performing requirements
analysis and build dynamic customized portals. Major achievements
include implementing complex search algorithms, e-shopping cart software
and live chat applications. Before Concept Solutions, Kartik was as a
web developer with Larsen and Toubro Limited, where he implemented
purchase order module software for ERP solutions. 


Kartik is an acclaimed expert, thought leader, and renowned speaker on
application and software security. He has been interviewed and quoted in
security journals like Security News, Computer Tech Update, Tech World
and Security Planet. Kartik is the author of popular security tools like
SiteDigger, a Google hacking tool, and WSDigger, a web services testing
framework. The tools have been featured in Forbes, Security Focus and
more than 200 other security publications. Over the course of his
career, Kartik has contributed and reviewed many technical books
including Hacking Exposed, Exploiting Software, Hacker Code, and How to
Break Web Security. He is a sought-after speaker and has made
presentations at several security conferences, such as RSA, Security
Leadership Conference, INFOSEC, APPSEC, ISACA, ISSA, and TOORCON 


Kartik is involved in several open source software projects. He chairs
the OWASP Los Angeles chapter (an open source project to develop secure
web application standards) and is a contributing member to VOIPSA (Voice
over IP Security Alliance), MONO (open source implementation of .NET in
UNIX) and SECCODE (open source repository of secure code) projects.
Kartik is a Certified Information Security Manager (CISM), Certified
Information Security Auditor (CISA), and Certified Information Systems
Security Professional (CISSP). He has an MS and a BS in computer


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.owasp.org/pipermail/owasp-sanfran/attachments/20070413/f9ea9fe7/attachment.html 

More information about the Owasp-sanfran mailing list