[Owasp-summit-2013] OWASP May 28 Connector

The OWASP Foundation The_OWASP_Foundation at mail.vresp.com
Wed May 28 22:17:11 UTC 2014

May 28, 2014  |   | www.owasp.org -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/a61bb0a4cc   | Contact Us -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/7f7c79e20d   |  Brought to you by the OWASP Foundation

Featured OWASP Projects

OWASP STING Game Project -

The OWASP STING Game Project is a card game in downloadable format or
if funded, printed and distributed at OWASP events.

STING is a combative card game in the style of Magic the Gathering
designed to teach application security attack and defense. Players
will simultaneously attack other players apps while defending their
own and supporting game business objectives.

For more information, please contact the Project Leader, Tony Turner

OWASP GoatDroid -

OWASP GoatDroid is a fully functional and self-contained training
environment for educating developers and testers on Android security.
GoatDroid requires minimal dependencies and is ideal for both Android
beginners as well as more advanced users. The project currently
includes two applications: FourGoats, a location-based social
network, and Herd Financial, a mobile banking application. There are
also several feature that greatly simplify usage within a training
environment or for absolute beginners who want a good introduction to
working with the Android platform.

For more information, please contact the Project Leader, Jack Mannino

New OWASP Projects

OWASP PHP Security Training Project

The goal of this project is to create an interactive training system,
consisting of several units, for PHP developers. Every unit is
divided in an attack and a defense part. For more information, please
contact the Project Leader, Timo Pagel. - timo.pagel at owasp.org

OWASP Hardened Phalcon Project

The Phalcon Framework is the world's fastest PHP Framework, however,
like most frameworks it is not 'hardened' by default. OWASP Hardened
Phalcon aims to help developers harden their Phalcon applications
in-line with the published OWASP guidelines. For more information,
please contact the Project Leader, Rhodry Korb. -
rhodry.korb at owasp.org

Project Announcements

Project Summit

We are just a little over a month away from AppSec EU and the 2014
Project Summit. So far we have some great projects signed up to
participate, but we need more projects participating. The Project
Summit is a fantastic opportunity to workshop your project and gather
new volunteers for your project. The Project Summit will be taking
place June 23-24 Anglia Ruskin University in Cambridge, UK and is
free and open to the Community. You do not need a conference pass to
attend the Project Summit.

Don’t have a project? No problem, we can still use your help at the
Project Summit. Sign up to participate in the Project Summit by
contacting Samantha Groves - samantha.groves at owasp.org  or Kait
Disney-Leugers. - kait.disney.leugers at owasp.org

Check out the current lineup of projects and add your project to the
list. This page will be updating regularly until the start of the
Project Summit:  Project Summit Home Page. -

Webinar Opportunities

There are still plenty of open dates available to record your
webinar. We are changing the format of our webinars, and now we are
giving Leaders an opportunity to reach out to us and let us know when
they are available. The Ops Team will then work to accomodate your
schedule. The final webinar will be posted on our official YouTube
channel. Please reach out to Samantha Groves -
samantha.groves at owasp.org  if you are interested in giving a 45
minute webinar on your OWASP Project.

Join us at AppSec EU in Support of Projects

There are many event activities directly aimed at promoting our OWASP
Projects taking place at AppSec EU 2014 in Cambridge UK. We are
having the 2014 Project Summit taking place on Monday, June 23rd and
Tuesday, June 24th from 9am to 6pm on both days. Here, our project
leaders will have an opportunity to work on participating projects.
On Wednesday, June 25th we will be having the Open Source Showcase
where participating projects will demo their work to conference
attendees. On Thursday, June 26th we will be having the Project
Leader Workshop lead by Simon Bennetts, OWASP ZAP Project Leader.
Join us and support our OWASP Project Leaders at AppSec EU 2014. To
register, please visit the AppSec EU 2014 registration page. -
                         Thank you to our recently renewed Corporate
Acunetix                                 Astech Consulting           
                     Sonatype, and                                

Honorary Membership applications now being accepted.

Be sure to review the requirements -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/6e39cd9b63  for Honorary Membership before you submit your form -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/5f5f750a06 .   Deadline for Honorary Membership is September 30, 2014 **Please
note: Chapters and Projects MUST be active.  Your leadership position
MUST be on file prior to September 30, 2014 in order to be eligible
for 2014 Honorary Membership.  ALL qualified individuals MUST apply
for Honorary Membership in order to vote by completing the Honorary
Membership Form -

          Global AppSec Events in 2014

AppSec EU 2014 (June 23 - 26, Cambridge, UK) -

Keynotes announced!  Lorenzo Cavallaro, Tobias Gondrom, Dr. Steven J.
Murdoch, Wendy Seltzer, and Jacob West                               
     A few sponsorship are still available -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/ec72cc11bc                                      Training details are available -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/93bccee836                                      Registration is now OPEN -

AppSec USA 2014 (September 16 - 19, Denver, CO) -

Keynotes announced!  Steve Crusenberry, Gary McGraw, and Bruce
Schneier                                     Sponsorship
opportunities are still available. -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/de6bb51153                                      Member Event Registration -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/eb039a0655                                      Public Registration -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/b81c702e18/id=a2oU0000000LJBkIAO ,

Upcoming Regional Events

LASCON 2014 (October 21 - 24, Austin, TX) -

Keynotes confirmed include:  Kelley Misata (Director Of Outreach and
Communications, The Tor Project), Jeff Williams (CTO, Contrast
Security), Zane Lackey (Founder/CSO @ signal sciences), Marcus Carey,
and Chris Nickerson

Partner and Promotional Events

OWASP has partnered with these great events in beginning of 2014 to
grow our community and build awareness around software security. If
you want to learn more about OWASP's involvement or will be attending
and want to help out contact us -

Hacker's IDOL - A Cyber Safety Campaign, April 1-October 17, India.

Suits & Spooks -
%20http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/a29393aab8 , June 20-21, NY, NY.

BlackHat -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/d9bd81a935  August 2-7, Las Vegas, NV.  OWASP Members receive $200 off BH
briefings with code:  owaBR200off.

BSides LV -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/5999768ee8 , August 5-6, Las Vegas, NV.

EC-Council TakeDown Con -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/2ba96be65d , August 14-19, Huntsville, AL.

EC-Council Hacker Halted, October 12-17, Atlanta, GA. -

ISSA International Conference -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/6c93aad682/issaconf_home  October 22-23, 2014, Orlando, FL

Suits & Spooks -
14%20http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/9612c216c6 , December 14, Singapore.

OWASP Foundation Social Media

LinkedIn -

Twitter -

Google + -

Facebook -

Ning -

StackOverflow -

OWASP Committees 2.0

OWASP is an organization that has been built on collaboration and
community involvement. I also hope that OWASP is an organization that
can support and innovation - encouraging the community to try new
things and be willing to look frequently and assess what is working
and what isn't.

We have grown to the point where an improved process needs to be
implemented where our leaders can lead and those who wish to
participate can do so easily and productively.

In 2008, the Foundation created committees.  These committees were
successful in that they pushed forward some much needed guidelines
and put some structure around areas that were undefined.

Unfortunately, over time, there were built in flaws with the
committee design that created roadblocks and eventually their

We would like to propose a revamped committee structure based on a
solid foundation that provides the voice and opportunities to the
community.  This structure will depend on a high level of community

Wiki page outlining structure for the committees 2.0 -

Most importantly - We want your input! not just leaders, or
individuals with an owasp.org email, anyone in the community is
encouraged to participate in this poll of both the general idea of
the committees 2.0 and particular features of the new model.
Participate here -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/19c7644c4a/authuser=1#16/e=2130f2  - anyone can view, you must be logged into a google account (not
just owasp.org) to vote or submit a suggestion.

2014 Global Board of Directors Election

Each year The OWASP Foundation holds its annual Global Board of
Directors election.  This October, OWASP members will be voting to
fill 3 of the 7 seats available.  If you are interested in learning
more about the election and what the requirements are to run for a
seat, please visit our 2014 Board Elections page -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/9b0dedfba6 .   Our Call for Candidates is now open!  Please submit your
candidacy here -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/bfbc25729b .  Call for Candidates will close August 15, 2014.

During the candidates recorded interview, each candidate will be
asked a series of questions provided by our OWASP Community.   Anyone
can submit a question(s), vote up or vote down existing questions. 
The top 5 to 6 questions will then be used for each candidate’s
interview.  If you have a question you would like to submit, please
do so here -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/9ef3180374 .  Deadline to submit your question is August 25, 2014.

For a complete Election Time line, Click Here -
http://cts.vresp.com/c/?TheOWASPFoundation/7c4dfa1834/4f163f6020/48ee0dd81d                                        Just for Fun

Congratulations to Ben Dechrai who was the first person to solve last
week's challenge:  The missing pages are 291 to 322 included

Click here to view last issue's puzzle -

Let's see who has the fastest solution this week ...

Five pirates have obtained 100 gold coins and have to divide up the
loot. The pirates are all extremely intelligent, treacherous and
selfish (especially the captain). The captain always proposes a
distribution of the loot. All pirates vote on the proposal, and if
half the crew or more go "Aye", the loot is divided as proposed, as
no pirate would be willing to take on the captain without superior
force on their side. If the captain fails to obtain support of at
least half his crew (which includes himself), he faces a mutiny, and
all pirates will turn against him and make him walk the plank. The
pirates start over again with the next senior pirate as captain.

What is the maximum number of coins the captain can keep without
risking his life?

Send your answers to our comment desk - support at owasp.org  for a
chance to win a prize.  Winners will be announced in the next

OWASP Global Webinars

In case you've missed any of our past webinars, you can replay them
from the OWASP YouTube channel. -

All of our webinars as well as conference talks and the tutorial
series have all been posted.  If you have content that should be on
the OWASP channel, contact  Jonathan Marcil -
jonathan.marcil at owasp.org 

Click to view this email in a browser

If you no longer wish to receive these emails, please reply to this
message with "Unsubscribe" in the subject line or simply click on the
following link: 


The OWASP Foundation sent this email free of charge using
VerticalResponse for Non-Profits. Non-Profits email free. You email

The OWASP Foundation
1200-C Agora Drive
Bel Air, Maryland 21014

Read the VerticalResponse marketing policy: 

You received this message because you are subscribed to the Google Groups "OWASP Summit 2013" group.
To unsubscribe from this group and stop receiving emails from it, send an email to owasp-summit-2013+unsubscribe at owasp.org.
To post to this group, send email to owasp-summit-2013 at owasp.org.
Visit this group at http://groups.google.com/a/owasp.org/group/owasp-summit-2013/.
For more options, visit https://groups.google.com/a/owasp.org/d/optout.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-summit-2013/attachments/20140528/ce19f582/attachment-0001.html>

More information about the Owasp-summit-2013 mailing list