OWASP Connector March 6, 2013                                               NEW OWASP PROJECTS OWASP Scada Security Project - The primary aim of OWASP SCADA Security project is to gather information about different ICS/SCADA security threats related to WEB-applications and their environments, starting from econnaissance ("footprinting") stage to vulnerabilities exploitation. PROJECT ANNOUNCEMENTS OWASP Periodic Table of Vulnerabilities Project:  Working Group Forming A working group is now forming under the leadership of James Landis to produce the 1.0 draft of the OWASP Periodic Table of Vulnerabilities. The goal of this project is to identify the ideal solution target for known web application vulnerability classes as a first step toward eliminating many classes of vulnerabilities altogether.  If you would like to have a hand in shaping the future of web application technologies toward solving vulnerabilities like cross-site scripting and SQL injection forever, your contributions would be greatly appreciated!  Click here to sign up for this task force. OWASP iGoat Project V.w.0 Released! The OWASP iGoat tool is a stand-alone iOS app (distributed solely in source code) designed to introduce iOS developers to many of the security pitfalls that plague poorly-written apps.  Like it's namesake, OWASP's WebGoat tool, iGoat is intended to teach software developers about these issues by stepping them through a series of exercises, each of which focuses on a single aspect of iOS security OWASP iGoat is an ideal tool to use in a classroom setting to teach iOS developers (and technically minded IT Security staff with at least some exposure to object oriented programming).  We invite the OWASP community to download and try iGoat, and we welcome your suggestions for improvements.  We're always looking for willing participants to contribute to the project as well! DOWNLOAD OWASP iGOAT 2.0 CISO SURVEY LAUNCHED Are you a CISO or an Information Security Manager? If YES, then we need your participation in this indursty survey that will report current trends in Application and Information Security, provide new insights across industries, and help OWASP align our projects for maximum impact for the end user and developer community. Pass the invitation on to your contacts: OWASP Foundation www.owasp.org Contact Us OWASP Blog Do you have some news?  Submit your item to appear in the next connector HERE UPCOMING EVENTS: Front Range OWASP Conference (SnowFroc) The Colorado OWASP chapters are proud to present the 5th annual SnowFroc.  Join 300 other developers, business owners, and security professionals for a day-and-a-half of presentations, training and Birds-of-a-Feather (BoaF) sessions. The conference will begin on Thursday, March 28th and will feature four primary tracks: High-Level Technical Deep-Dive/Hands-on Technical Management Legal Additional activities include a CTF competition, a moderated panel discussion featuring top industry leaders, and a FREE (yes, FREE) secure coding course REGISTER NOW TO RESERVE YOUR SEAT UPCOMING PARTNER EVENTS: Cloud Matters (Alberta, Canada) March 11-12, 2013 BlackHat EU (Amsterdam, Netherlands) - April 10-11, 2013 HITB Amsterdam 2013 (Amsterdam, Netherlands) April 10-11, 2013 2013 Cyber Security Summit (Prague, Czech Republic) - April 11-12, 2013 Security B-Sides, Orlando (Orlando, Florida, USA) - April 13-14, 2013 Just a reminder to mark you calendar for the 2013 North American AppSec Conference in New York City November 18th-21st at the Marriott Marquis in the heart of Times Square.  We have a fantastic event shaping up and sponsorships are selling fast.  If you are interested in sponsoring, please complete this request for information Do you want to host an event or propose OWASP involvement in an outreach event?  Submit your event through the OWASP Conference Management System (OCMS) The 2013 LATAM Tour is scheduled for training and plenary sessions visiting 9 different chapters in the Region! A EUROPEAN Tour is being planned for the end of May - Stay tuned for More Information on that - If your chapter would be interested in participating in this tour LET US KNOW                                      OWASP Social Media Linkedin Twitter Google + Facebook NING StackOverFlow MARCH GLOBAL WEBINARS SCHEDULED Topic: OWASP Marketing Initiative Sisterworks Publishing will be presenting their phase one research on OWASP background material to be used in marketing and brand strategy for the organization MARCH 14, 2013 at 9am EST   Please Note the 9am time change for this call (GMT -5) MARCH 14, 2013 at 9pm EST (GMT -5)  Links to the recordings of previous meetings can be found on the Initiatives Page The Number of Individual, Unique Volunteers who have signed up for a posted Initiative is now over 250! This is what volunteers have signed up for! The process works well - so don't hesitate to submit your request for assistance Thank you to the following Companies who have renewed their memberships:   Adobe PwC Technology Rakuten, Inc Did you know that your individual, paid OWASP membership ... directly support our local chapters and our projects gets you a significant discount at all OWASP events entitles you to partner event discounts several times each year gives you a voice in the OWASP Global Elections entitles you to communicate professionally via an owasp.org email address can be a matching donation allocation through your US employer