Sunday, December 30, 2012
Friday, December 21, 2012
AppSecUSA 2013
AppSecUSA 2013
Considering the Mayans did not end the world today… we’re clear to throw the biggest software security focused event in the world with your help - SAVE THE DATE AppSecUSA 2013
Monday November 18th – Thursday 21th 2013
1
We are now confirmed in the heart of NYC at the Marriot Marquee at Time Square NYC. The location and hotel
is absolutely AMAZING and if you have never visited NYC you will not want to
miss this opportunity : http://www.marriott.com/hotels/travel/nycmq-new-york-marriott-marquis/
The planning team is hard at work with many community members to make it a conference/summit experience! To do so we are OPEN for suggestions and the
best way to capture them for the planning committee is in the following online
location: https://www.google.com/moderator/#16/e=201fc2
Want to suggest a keynote? A working session on a framework, a committee meeting, a builder meet breaker dojo? Want to DJ the at swank after party or recommend a restaurant or activity?
There are NO bad suggestions only the suggestions that we don’t hear about in time and get supported by YOU the community to give us enough run-way to make them possible.
We will follow the Builder, Breaker, Defender track
themes for talks and will be holding a Call for Trainers and Speakers when we
reach that milestone.
Check it out: https://www.google.com/moderator/#16/e=201fc2 and over the next few weeks the website (http://www.appsecusa.org) website will be online with and
supporting materials.
Tuesday, December 18, 2012
OWASP Italy Day 2012: Highlights
This year's Italy Day was held in the beautiful city of Rome. The conference had 210 attendees, and a number of great speakers in attendance! Please visit the OWASP Italy Day page for more information and highlights.
Monday, December 10, 2012
AppSec 2013: OWASP Projects Track Call for Entries
This CFE is now closed. We will not be accepting any more submissions.
This year for AppSec APAC 2013, we are offering a limited number of FREE speaking opportunities to OWASP Project Leaders, as well as FREE conference admission for the representatives of the chosen projects. We would like to invite ALL OWASP Project Leaders to apply.
This year for AppSec APAC 2013, we are offering a limited number of FREE speaking opportunities to OWASP Project Leaders, as well as FREE conference admission for the representatives of the chosen projects. We would like to invite ALL OWASP Project Leaders to apply.
The APAC 2013 OWASP Project Track (OPT) forum differs from OSS in that only OWASP Projects can apply to participate. This is a great opportunity for OWASP Project Leaders to showcase their project as an official conference presenter. Please note that successful OPT applicants are responsible for developing and presenting in their designated time slot at the conference.
One of the benefits of participating in the AppSec APAC 2013 Project Track is that OWASP Project Leaders have the option of requesting financial assistance from the Foundation to cover travel and hotel expenses ONLY. This funding is only available to projects that have been selected to participate in the Project Track at AppSec APAC 2013. Preference will be given to OWASP Project Leaders that are applying to present at the conference that is closest to their region. Additionally, preference will be given to OWASP Project Leaders that have not presented or participated in the Project Track forum.
APPLICATION DEADLINES
OPT Applications are due: December 28, 2012
CONFERENCE DATE
February 19-22, 2013
All OPT presentations will be held between February 21-22, 2013.
For an opportunity to present your open source project through the OPT at AppSec APAC 2013, please submit your application using the OSPT APAC 2013 Application.
AppSec 2013: Open Source Showcase Call for Entries
This CFE is now closed. We will not be accepting any more submissions.
This year for AppSec APAC 2013, we are offering a limited number of FREE booth spaces to open source projects, as well as FREE conference admission for the representatives of the chosen projects. We would like to invite ALL open source projects to apply.
This year for AppSec APAC 2013, we are offering a limited number of FREE booth spaces to open source projects, as well as FREE conference admission for the representatives of the chosen projects. We would like to invite ALL open source projects to apply.
The APAC 2013 Open Source Showcase is not just for OWASP projects. All open source projects are encouraged to apply for an opportunity to showcase, demo, and/or promote their project. Showcase participants will be responsible for manning their booth during their allocated time.
One of the benefits of participating in the AppSec APAC 2013 Showcase is that OWASP Project Leaders have the option of requesting financial assistance from the Foundation to cover travel and hotel expenses ONLY. This funding is only available to projects that have been selected to participate in the Showcase at AppSec APAC 2013. Preference will be given to OWASP Project Leaders that are applying to present at the conference that is closest to their region. Additionally, preference will be given to OWASP Project Leaders that have not presented or participated in the OSS forum.
APPLICATION DEADLINES
OSS Applications are due: December 28, 2012
CONFERENCE DATE
February 19-22, 2013
All OSS presentations will be held between February 21-22, 2013.
For an opportunity to showcase your open source project at AppSec APAC 2013, please submit your application using the Open Source Showcase form.
Wednesday, December 5, 2012
OWASP 2013
2013 planning is underway for OWASP. We've got lots of great local
initiatives taking place at our numerous chapters all over the world. I
have no doubt these local efforts will continue to prosper (find your local chapter here).
Looking at OWASP overall, what do you want to see in 2013?
Do you have areas where you'd like to focus and help OWASP grow?
--
Michael Coates | OWASP | @_mwc
Looking at OWASP overall, what do you want to see in 2013?
Do you have areas where you'd like to focus and help OWASP grow?
--
Michael Coates | OWASP | @_mwc
Monday, December 3, 2012
OWASP Spain Chapter Receives Award!
OWASP Spain has received an award in recognition for their cooperation and continued support for the dissemination of web application security in Spain.
The award was given by the RedSeguridad Magazine in a ceremony in which prizes were awarded to various institutions and ended in a lively cocktail party.
Vicente Aguilera Diaz, the OWASP Spain Chapter Leader, was present to receive the award on behalf of the chapter. There were more than 200 attendees during the celebration, with all leading figures in the security industry from Spain present during the event.
This is the second award for the OWASP Spain Chapter, as in 2008 they received another important award from SIC magazine.
We would love to congratulate Vicente, and all active participants in the OWASP Spain Chapter. Well done to you all!
IBM Software Summit: OWASP Spain in Review
OWASP Spain was present this month at the most important event organized by IBM software in Spain: IBM Software Summit #START013.
Vicente Aguilera Díaz, the OWASP Spain Chapter Leader, was pleased to give a presentation at this congress of great importance for the country, which took place in Madrid.
With over 2000 attendees, OWASP had great visibility with participation at this event!
You can find more information about the event here: IBM Software Summit #START013.
Friday, November 30, 2012
AppSec USA 2012 - That's a Wrap!
Thank you so much for attending AppSec USA 2012 in Austin, TX. We had a great time and hope you did too. We look forward to seeing you at future AppSec events and hopefully you will come back to Texas for LASCON 2013.
We have the videos for the conference available at http://videos.2012.appsecusa.org/ If you are a vimeo user, you can follow our vimeo channel at https://vimeo.com/channels/appsecusa
We had a lot of requests for AppSec USA branded swag. We asked our good friends over at Rocksports to set up a store for us and now we are happy to provide for all your swag wearing, AppSec promoting needs http://appsecusa.rockapparelshop.com/
If you haven't provided feedback on the event, we would appreciate hearing from you and about your experience with OWASP and the event: http://sl.owasp.org/usa12_survey
We ask that you Save the Date in your calendars now for LASCON 2013 in Austin, TX from Oct 22-25, 2013 and AppSecUSA 2013 in NYC from Nov 18-21, 2013.
Thank you for being a part of AppSec USA this year and briefly making Austin, TX the AppSec Capital of the World.
Thanks!
AppSec USA 2012 Planning Team
James Wickett, Josh Sokol. David Hughes
Tuesday, November 27, 2012
OWASP AppSec APAC 2013: Call for Entries
We are pleased to announce that the OWASP South Korea chapter will host the OWASP AppSec APAC 2013 conference in Jeju, South Korea at the Hyatt Regency Jeju. The event will be composed of 2 days of training (February 19-20), followed by 2 days of conference talks (February 21-22).
We are currently accepting both Training and Talk submissions:
- Call for Training - Submission Form, Deadline Dec. 17, 2012.
- Call for Papers - Submission Form, Early Selection Deadline Dec 12, 2012. Final Selection Deadline Dec. 31, 2012
We are also accepting applications for the Open Source Showcase (project demos) and OWASP Project Track (OWASP project talks).
This CFE for the Showcase is now closed. We will not be accepting any more submissions.
The APAC 2013 Open Source Showcase (OSS) is not just for OWASP projects. All open source projects are encouraged to apply for an opportunity to showcase, demo, and/or promote their project. The APAC 2013 OWASP Project Track (OPT) forum differs from OSS in that only OWASP Projects can apply to participate. This is a great opportunity for OWASP project leaders to showcase their project as an official conference presenter.
Applications for the OSS and OPT are due Friday, December 28th 2012, and are considered on a rolling basis - so get moving!
More details on the Call for Training, Call for Papers, and Conference can be found at appsecapac.org. If you have any questions, please email the APAC conference committee: AppSecAPAC2013@owasp.org
Tuesday, November 20, 2012
AppSec USA 2012 Interview Series: Jeremiah Grossman & "Swarthy Fizz"
Jenny Hoff has posted two new interviews from AppSec USA 2012 in Austin, Texas.
The third video in the AppSec USA interview series sees Jeremiah Grossman discuss the evolution of internet security, the most common vulnerabilities web applications have, and how users can protect themselves. This is followed by an interview with "Swarthy Fizz" who gives an in-depth look inside web counterintelligence. Making friends with hackers, infiltrating malicious networks, and recovering stolen classified information, "Swarthy Fizz" explains how its done and what it means for online security.
The purpose of the interview series is an outreach program - to capture the voices of OWASP and continue to make AppSec more visible! These two interviews are the third and fourth in the series filmed and developed by Jenny Hoff. Stay tuned for the rest of the AppSec USA 2012 Interviews.
Friday, November 9, 2012
AppSec 2012 Interviews: Jeff Williams & Jim Manico
Jenny Hoff has started posting interviews she conducted at AppSec USA 2012 in Austin, Texas. Jenny is an international journalist who has been on CNN, Deutsche Welle, and did political reporting for several years at KXAN in Austin, Texas.
She kicked it off with an interview with Jeff Williams on "What is OWASP?", and followed with an interview with Jim Manico who talks about the OWASP Mission. The purpose of the interview series is an outreach program - to capture the voices of OWASP and continue to make AppSec more visible! These two interviews are the first in the series filmed and developed by Jenny Hoff. Stay tuned for the rest of the AppSec USA 2012 Interviews.
Tuesday, November 6, 2012
OWASP Chairman of the Board Interviewed by CNN
Our OWASP Chairman of the Board, Michael Coates, was interviewed by CNN Money yesterday regarding online voting. The article focused on the issues associated with digital voting processes in the United States.
Great job, Michael! Check out the story here!
Image via CNN Money.
Monday, November 5, 2012
OWASP - Open Contract Positions
Hello OWASP Leaders,
There are two, part time OWASP contractor positions posted here:
There are two, part time OWASP contractor positions posted here:
https://www.owasp.org/index.php/OWASP_Jobs
If you know of anyone who may be interested in these positions, please have them submit their information via the apply link on the page.
Thank you!
Kate Hartmann
+1 301-275-9403
Skype: kate.hartmann
Complimentary Admission to AppSec Latam for OWASP Leader
OWASP AppSec Latam 2012 taking place in Montevideo, Uruguay on November 18-21
-- YES that's only a couple weeks away!
OWASP leaders are able to get complimentary admission to the conference on Nov 19-20 and there are 2 seats for each of the training courses reserved for OWASP Leaders (available on a first come first serve basis).
More details on the conference schedule as well as all the training classes are available at: Appseclatam.org
To take advantage of this offer:
1. Register at: http://www.cvent.com/d/ ycqskx
2. Select the General Admission and any Training Class you are interested in
3. Enter the appropriate discount code(s) at checkout:
For the complimentary conference registration, use discount code: OLEADER
For the training courses, the discount codes are:
- Matt Tesauro's Class (Hands on Web App Sec Testing the OWASP Way) - TESAURO_TRAINING_OLEADER
- Ari Elias-Bachrach's Class (Java Secure Coding) - BACHRACH_TRAINING_OLEADER
- Gianni Gnesa's Class (Advanced Vulnerability Research & Exploit Development) - GNESA_TRAINING_OLEADER
Need a hotel room?
We have a special discounted room rate at the Four Points Sheraton in Montevideo. To reserve your room, visit: https://www. starwoodmeeting.com/ StarGroupsWeb/res?id= 1209182075&key=76379
Contact the AppSec Latam team with any questions!
OWASP AppSec Latam 2012
Montevideo Uruguay
Training: November 18-19,
Talks: November 20-21
@appseclatam
AppSec USA 2012 Pictures!
We have finished uploading the majority of our AppSec USA 2012 pictures. Here they are!
We hope you had fun. Please do share a link if you were at the conference and took some yourself.
Tuesday, October 30, 2012
OWASP Initiatives Tutorial and Information
Leaders: Please forward to your chapters and other collaborators.
OWASP Initiatives Tutorial and Information
Please join us for an overview of the phase 1 launch of the new OWASP initiatives plan. Get the scoop on the "WHO, WHAT, WHERE, WHEN, and, WHY" behind this community outreach and collaboration. Chapter leaders, Project leaders, and curious "lurkers" are especially encouraged to attend.
Submit your pre webinar questions to:
http://owasp4.owasp.org/contactus.html
Register for a session now by clicking a date below:
Mon, Nov 5, 2012 9:00 AM - 10:00 AM EST
https://www3.gotomeeting.com/register/238547438
Mon, Nov 5, 2012 9:00 PM - 10:00 PM EST
https://www3.gotomeeting.com/register/420108142
Once registered you will receive an email confirming your registration with information you need to join the Webinar.
System Requirements
PC-based attendees
Required: Windows® 7, Vista, XP or 2003 Server
Mac®-based attendees
Required: Mac OS® X 10.5 or newer
Mobile attendees
Required: iPhone®, iPad®, Android phone or Android tablet
Thank you!
Kate Hartmann
+1 301-275-9403
Skype: kate.hartmann1
OWASP Initiatives Tutorial and Information
Please join us for an overview of the phase 1 launch of the new OWASP initiatives plan. Get the scoop on the "WHO, WHAT, WHERE, WHEN, and, WHY" behind this community outreach and collaboration. Chapter leaders, Project leaders, and curious "lurkers" are especially encouraged to attend.
Submit your pre webinar questions to:
http://owasp4.owasp.org/contactus.html
Register for a session now by clicking a date below:
Mon, Nov 5, 2012 9:00 AM - 10:00 AM EST
https://www3.gotomeeting.com/register/238547438
Mon, Nov 5, 2012 9:00 PM - 10:00 PM EST
https://www3.gotomeeting.com/register/420108142
Once registered you will receive an email confirming your registration with information you need to join the Webinar.
System Requirements
PC-based attendees
Required: Windows® 7, Vista, XP or 2003 Server
Mac®-based attendees
Required: Mac OS® X 10.5 or newer
Mobile attendees
Required: iPhone®, iPad®, Android phone or Android tablet
Thank you!
Kate Hartmann
+1 301-275-9403
Skype: kate.hartmann1
Friday, October 19, 2012
Last Chance to Cast Your Vote Election Ends Tonight!
Voting for the 2012 Board Election Ends In Just A Couple Hours
The last email blast was just sent.
EVERY VOTE COUNTS!! Please cast your vote if you have not already done so.
For more information on the candidates, please see: https://www.owasp.org/index.php/Membership/2012_Election#2013_Candidates_.26_Interviews
Please be sure to check your spam folder if it is not in your inbox
Your Vote Counts!
Voting for the 2012 Board Election Ends Tonight, October 19, 2012
For more information on the candidates, please see: https://www.owasp.org/index.php/Membership/2012_Election#2013_Candidates_.26_Interviews
Check your spam filters and add owasp@simplyvoting.com to your whitelist if you haven't received your email ballot
If you're still having problems submit them using our contact us form
If you're still having problems submit them using our contact us form
Wednesday, October 17, 2012
Did you cast your vote for the 2012 Board Election yet?
The election is current running and emails have been sent out
Check your spam filters and add owasp@simplyvoting.com to your whitelist if you haven't received an email ballot
If you're still having problems submit them using our contact us form
For more information on the candidates, please see: https://www.owasp.org/index.php/Membership/2012_Election#2013_Candidates_.26_Interviews
Check your spam filters and add owasp@simplyvoting.com to your whitelist if you haven't received an email ballot
If you're still having problems submit them using our contact us form
For more information on the candidates, please see: https://www.owasp.org/index.php/Membership/2012_Election#2013_Candidates_.26_Interviews
Monday, October 15, 2012
Top Ten Reasons for AppSec USA
OWASP AppSec USA 2012 will be held in Austin this year October 23-26, at the Hyatt downtown. http://www.appsecusa.org
Here are the top 10 reasons why this is so fitting:
1. Austin is transforming, and OWASP aligns perfectly with all that is Austin because it is the preeminent GLOBAL, OPEN, FREE, CHARITABLE 501(c)(3) security organization.
2. Austin is a hotbed of cybersecurity cogniscenti and activity: evidenced by startups like Click Security, recently acquired Anue Systems and BreakingPoint Systems, IBM, Dell (acquired Secureworks), etc.
3. Cyber Warfare and Cyber Crime stories hit the headlines at an increasing rate; OWASP is the trusted source for the US National Cyber Security Division and organizations around the world see this impressive list:
https://www.owasp.org/index.php/Industry:Citations#National_.26_International_Legislation.2C_Standards.2C_Guidelines.2C_Committees_and_Industry_Codes_of_Practice
4. October is National Cyber Security, US Department of Homeland Security story: http://www.dhs.gov/national-cyber-security-awareness-month!!!
5. Austin's OWASP chapter is one of over 190 chapters worldwide, it is a thriving locus of the "brain trust" for sharing ideas and learning how to make software security VISIBLE so individuals and organizations can make informed decisions about true software security risks.
6. There are many security organizations, OWASP is where the best and brightest converge. OWASP does not endorse or recommend commercial products or services, allowing our community to remain vendor neutral with the collective wisdom of the best minds in software security worldwide. It's hard not to attend an information security conference where a presenter does not quote the "OWASP Top 10."
7. AppSec USA 2012 will have sessions custom-tailored for everyone from the CISO to the newbie software developer, including college students.
8. Austin creates a sense of community, OWASP creates and nurtures community, open sharing, and the promotion of FREE educational materials.
9. Austin is weird, and yes, OWASPers can be a little weird.
10. AppSec USA is coming to Austin, this is yet another proof point that Austin's role as "THE place to be" is truly multi-dimensional.
As more background, this video is an example of education for software developers: OWASP Appsec Tutorial Series - Episode 2: SQL Injection
http://www.youtube.com/watch?v=pypTYPaU7mM
For more information, click here: www.owasp.org, www.appsecusa.org
Here are the top 10 reasons why this is so fitting:
1. Austin is transforming, and OWASP aligns perfectly with all that is Austin because it is the preeminent GLOBAL, OPEN, FREE, CHARITABLE 501(c)(3) security organization.
2. Austin is a hotbed of cybersecurity cogniscenti and activity: evidenced by startups like Click Security, recently acquired Anue Systems and BreakingPoint Systems, IBM, Dell (acquired Secureworks), etc.
3. Cyber Warfare and Cyber Crime stories hit the headlines at an increasing rate; OWASP is the trusted source for the US National Cyber Security Division and organizations around the world see this impressive list:
https://www.owasp.org/index.php/Industry:Citations#National_.26_International_Legislation.2C_Standards.2C_Guidelines.2C_Committees_and_Industry_Codes_of_Practice
4. October is National Cyber Security, US Department of Homeland Security story: http://www.dhs.gov/national-cyber-security-awareness-month!!!
5. Austin's OWASP chapter is one of over 190 chapters worldwide, it is a thriving locus of the "brain trust" for sharing ideas and learning how to make software security VISIBLE so individuals and organizations can make informed decisions about true software security risks.
6. There are many security organizations, OWASP is where the best and brightest converge. OWASP does not endorse or recommend commercial products or services, allowing our community to remain vendor neutral with the collective wisdom of the best minds in software security worldwide. It's hard not to attend an information security conference where a presenter does not quote the "OWASP Top 10."
7. AppSec USA 2012 will have sessions custom-tailored for everyone from the CISO to the newbie software developer, including college students.
8. Austin creates a sense of community, OWASP creates and nurtures community, open sharing, and the promotion of FREE educational materials.
9. Austin is weird, and yes, OWASPers can be a little weird.
10. AppSec USA is coming to Austin, this is yet another proof point that Austin's role as "THE place to be" is truly multi-dimensional.
As more background, this video is an example of education for software developers: OWASP Appsec Tutorial Series - Episode 2: SQL Injection
http://www.youtube.com/watch?v=pypTYPaU7mM
For more information, click here: www.owasp.org, www.appsecusa.org
Friday, October 12, 2012
2012 Board Election
Voting for the 2012 Board Election has officially kicked off! For more information on the candidates, please visit https://www.owasp.org/index.php/Membership/2012_Election#2013_Candidates_.26_Interviews
Wednesday, October 10, 2012
OWASP Featured on Google's Open Source Blog: Summer of Code 2012
OWASP is being featured in the Google Open Source blog as a result of our involvement in Summer of Code. Those involved describe it as being a fantastic experience for both mentors and students so hopefully we can repeat it next year.
Thank you to Fabio Cerullo, and all who contributed to the success of this initiative!
Image via Google Open Source Blog
Thank you to Fabio Cerullo, and all who contributed to the success of this initiative!
Image via Google Open Source Blog
Tuesday, October 9, 2012
Voting Starts This Friday For The OWASP Board 2012 Election
Members of the OWASP Foundation will be asked to vote for their elected leaders starting this Friday. Three candidates will serve a two year term. Please take the time to review the transcripts and recorded interviews and cast your vote in support of the future of OWASP Foundation globally.
2013 Candidates & Interviews
Justin Derry - Australia
Jim Manico - Hawaii
Eoin Keary - Ireland
Matt Tesauro - Texas
Tom Brennan - NYC Metro
Justin Derry - Australia
Jim Manico - Hawaii
Eoin Keary - Ireland
Matt Tesauro - Texas
Tom Brennan - NYC Metro
Voting period: October 12 - October 19, 2012 Look for an email to follow shortly with voting instructions
Election result announcement: October 19, 2012 at OWASP AppSecUSA Conference http://www.appsecusa.org
Monday, October 8, 2012
OWASP AppSec Latam 2012 - Register Now!
OWASP Community Members -
We are pleased to announce the training, talks, and complete schedule for OWASP AppSec Latam 2012 taking place in Montevideo, Uruguay on November 18-21!
IN THIS MESSAGE:
Training | Conference Schedule | Reserve your hotel room at the 4 Points Sheraton | Early Registration Deadlines | Thanks to our Sponsors
TRAININGThis year, we have 3 amazing 2-day trainings taking place:
- Java Secure Coding taught by Ari Elias-Bachrach, Appsec Labs
- Advanced Vulnerability Research and Exploit Development taught by Gianni Gnesa, Ptrace Security
- Hands on Web Application Testing: Assessing Web Apps the OWASP way taught by Matt Tesauro
Learn more about each of the classes by clicking on the "Training" tab at appseclatam.org
CONFERENCE SCHEDULE RELEASEDWe have great keynotes lined up from Jerry Hoff, Cristian Borghello, Pravir Chandra, and Hernan Racciatti in addition to a power packed conference line up including:
- Tony Ucedavelez
- Andres Riancho
- Sebastian Bortnik
- Alex Bauert
- Dario Gomez
- Breno Silva
- Fernando Nunes
- Nicolas Rodrigues
- Mateo Martinez
- Mauro Flores
- Flavio de Cristofaro
- Felipe Zipitria
- Carlos Martinez - Cagnazzo
BOOK YOUR HOTEL ROOM BEFORE IT IS TOO LATE!
We have a special discounted room rate at the Four Points Sheraton in Montevideo. To reserve your room, visit: https://www.starwoodmeeting.com/StarGroupsWeb/res?id=1209182075&key=76379
EARLY BIRD REGISTRATIONEarly bird registration prices of only 3200.00 UYU (approx. 150.00 USD) are available to those that register before October 15!
http://www.cvent.com/d/ycqskx
http://www.cvent.com/d/ycqskx
THANKS TO OUR SPONSORS
We are thankful for our supporters: Antel Telecommunications, Core Security, PWC, and Deloitte!
Thanks all.
OWASP AppSec Latam 2012, Montevideo Uruguay
Training: November 18-19,
Talks & More: November 20-21
appseclatam.org
appseclatam.org
appseclatam2012@owasp.org
@appseclatam
@appseclatam
Finalist for the 2012 WASPY Awards
The 2012 WASPY Award Finalists have been posted. Check out who they are https://www.owasp.org/index.php/WASPY_Award_2012_Finalists
Thank you to all the candidates who participated and congratulations to the finalists!
Thank you to all the candidates who participated and congratulations to the finalists!
Thursday, October 4, 2012
OWASP AppSec USA Update
Dear OWASP Community Members,
Hundreds (600+) of your colleagues have already registered for OWASP AppSec USA (Austin, TX) October 23-26, 2012. Don’t be left behind. Register now www.appsecusa.org
Speakers: 58 sessions, and 3 keynotes including:
- Douglas Crockford’s keynote, “Securing JavaScript”
- Jerry Hoff’s session, “AppSec Training, Securing the SDLC, WebGoat.NET and the Meaning of Life”
- John Steven’s session, “Analyzing and Fixing Password Protection Schemes”
- Dan Kuykendall’s session, “Get off your AMG and don’t REST on JSON”
Training Update: There are seven 2-day training courses, and four 1-day training courses taught by industry experts. Slots are filling up quickly, with some classes already full. Select your training course here: http://www.appsecusa.org/schedule/trainings/ Details on training promotions are available here: http://owasp.blogspot.com/2012/09/appsec-usa-2012-training-promotions.html
Movie Sneak Preview: AppSec USA 2012 will feature a preview screening of the movie, “Reboot.” There are only 300 passes available, and they are filling fast. You need to register for the movie in order to attend, here are the details: http://www.appsecusa.org/schedule/reboot/
University Challenge: Are you a student already attending or interested in attending? Learn more and sign up for our University Challenge here: https://docs.google.com/a/owasp.org/spreadsheet/viewform?formkey=dE5makFZSUo1eXNhSkVrMXc5TjZsSHc6MQ#gid=0
T-Shirt Update: Needless to say, you’ll want these awesome souvenirs. We’re placing the order this week, please register so we can forecast accordingly.
Already Registered? For those of you who have already registered, spread the word. Remember to pack your running shoes for the 5K charity run. Register here: http://www.appsecusa.org/schedule/5k-charity-run/
See you soon,
The AppSec USA Team
Friday, September 28, 2012
Membership Deadline Is This Sunday, Sept 30, 2012
DEADLINE REMINDER
The deadline for Paid and Honorary Membership is this Sunday, Sept 30 for eligibility to vote in the upcoming 2012 Election. Please see https://www.owasp.org/index.php/Membership/2012_Election for more information.
Using the link above please check to be sure you are a current paid member. If you are not, please consider becoming a member today https://www.owasp.org/index.php/Newmembership Your donation will help to continue to provide vendor neutral services and to continue to develop quality tools and documentation in our open source community.
If you would like to apply for honorary membership please complete the honorary membership form before September 30, 2012.
https://docs.google.com/a/owasp.org/spreadsheet/embeddedform?formkey=dHA4dno2TlhSa0pVSUNQclZCOWROV0E6MQ
The deadline for Paid and Honorary Membership is this Sunday, Sept 30 for eligibility to vote in the upcoming 2012 Election. Please see https://www.owasp.org/index.php/Membership/2012_Election for more information.
Using the link above please check to be sure you are a current paid member. If you are not, please consider becoming a member today https://www.owasp.org/index.php/Newmembership Your donation will help to continue to provide vendor neutral services and to continue to develop quality tools and documentation in our open source community.
If you would like to apply for honorary membership please complete the honorary membership form before September 30, 2012.
https://docs.google.com/a/owasp.org/spreadsheet/embeddedform?formkey=dHA4dno2TlhSa0pVSUNQclZCOWROV0E6MQ
Thursday, September 27, 2012
AppSec USA 2012: Training Promotions, Deadlines, WASPY Awards, and Open Source Showcase
OWASP Community Members -
A few updates and reminders on our upcoming global event: AppSec USA 2012 taking place on October 23-26 at the Hyatt Regency in downtown Austin, Texas!
IN THIS MESSAGE:
Training Promotions | Reserve your hotel room by October 1 | Register by Sept. 30 | Conference Schedule | Waspy Awards | Open Source Showcase | Thanks to our Sponsors
TRAINING PROMOTIONS
Win a free pass to Sherif Koussa's Training: Writing Secure J2EE Code
Winner must solve a Java riddle plus get the most amount of retweets, LI comments and likes or Facebook likes.
For details go to: http://www.slideshare.net/ skoussa/how-good-of-a-java- developer-are-you
Several of our trainers have decided to offer a "3 for 2" deal on their training course. If your company wants to send 3 people to a training course - you can do it for the price of 2 training registrations. Put it another way - buy 2 training registrations, get a third for free! If you are interested in taking advantage of this promotion email sarah.baso@owasp.org for registration instructions and a discount code. Training classes included in this offer:
- 1 Day Training (Wed, Oct 24) Web Application Secure Defensive Coding Bootcamp (Jim Manico and Eoin Keary)
- 1 Day Training (Wed, Oct 24) CISO Training: Managing Web & Application Security – OWASP for Senior Managers (Tobias Gondrom)
- 1 Day Training (Wed, Oct 24) The Art of Exploiting SQL Injection (Sumit Siddharth)
- 2 Day Training (Tues& Wed, Oct 23-24) .NET Secure Coding (Erez Metula)
- 2 Day Training (Tues& Wed, Oct 23-24) Tactical Defense with ModSecurity (Josh Amishav-Zlatin)
To learn more about all of our training courses, visit: http://www.appsecusa. org/schedule/trainings/
DEADLINE: RESERVE YOUR HOTEL ROOM BY OCTOBER 1
The Hyatt has extended the cut-off date for our room block at the discounted rate of $189/night to OCTOBER 1. Dont get stuck cabbing it every day, get your hotel room today. Book at the Hyatt Regency Austin under our discounted rate > https://resweb.passkey.com/ Resweb.do?mode=welcome_ei_new& eventID=6604435
REGISTER BY SEPTEMBER 30th
Registration prices go up by $100 after September 30th, So sign up today for a great deal: http://www.appsecusa.org/ register/
CONFERENCE SCHEDULE
We have released the schedule (still subject to change) at schedule.appsecusa.org and the mobile version at m.appsecusa.org. You can create your own personal schedule, connect with other attendees and even import your schedule into Outlook or iCal.
Web Application Security of the Year (WASPY) Award
Every year a group of individuals including researchers, developers, security professionals and others work to ensure the security of web applications. Some of these individuals are featured in news stories or at conferences as recognized experts. But there are many other ‘unsung heroes’ that work every day to improve web application security and yet are rarely recognized. This year OWASP will initiate the first annual Web Application Security Person of the Year (WASPY) award. The WASPY awards are solely funded by sponsors.
We would like to thank our Platinum Sponsor Qualys and our Silver Sponsor Trustwave for their additional contributions to this award.
It's not too late to sponsor the WASPY awards. Please contact Kelly Santalucia kelly .santalucia@owasp.org for more information or with any questions you may have.
OPEN SOURCE SHOWCASE
Don't miss the OWASP Open Source Showcase starting on Thursday, October 25th and ending on Friday, October 26th! A handful of open source projects were selected to showcase, demo, and promote their work at the AppSec USA conference this year.
The projects showcasing are:
The Open Source Showcase is a great opportunity to participate in live demos, and meet the Project Leaders face to face. The showcases run from 9:00am to Noon, and from 2pm to 5pm on both Thursday and Friday. Please contact projects@owasp.org for more information.
- OWASP Hackademic Challenges
- Armitage
- ThreadFix
- Brakeman
- ModSecurity
- Mantra OS
The Open Source Showcase is a great opportunity to participate in live demos, and meet the Project Leaders face to face. The showcases run from 9:00am to Noon, and from 2pm to 5pm on both Thursday and Friday. Please contact projects@owasp.org for more information.
THANKS TO OUR SPONSORS!
We are EXTREMELY thankful to our donors and sponsors:
Adobe, NTOBJECTives, Aspect Security, Checkmarx, iMPERVA, Cigital, Qualys, NetSPI, Veracode, IBM, f5, WhiteHat, Army INSCOM, Trustwave Spiderlabs, Impact Security, Denim Group, Gemalto, Gotham Digital Science, Symplified, Blueinfy, Core Security Technologies, Radware, RSA Security, Rapid7, Falling Rock, and Pwnie Express.
Adobe, NTOBJECTives, Aspect Security, Checkmarx, iMPERVA, Cigital, Qualys, NetSPI, Veracode, IBM, f5, WhiteHat, Army INSCOM, Trustwave Spiderlabs, Impact Security, Denim Group, Gemalto, Gotham Digital Science, Symplified, Blueinfy, Core Security Technologies, Radware, RSA Security, Rapid7, Falling Rock, and Pwnie Express.
THANK YOU! We couldn't pull this off without your generous support!
OWASP AppSec USA 2012, Austin TX
Training: October 23-24,
OWASP AppSec USA 2012, Austin TX
Training: October 23-24,