Sunday, December 30, 2012

Happy New Year from OWASP!


Friday, December 21, 2012

AppSecUSA 2013


 AppSecUSA 2013

Considering the Mayans did not end the world today…  we’re clear to  throw the biggest software security focused event in the world with your help - SAVE THE DATE AppSecUSA 2013

Monday November 18th  – Thursday 21th 2013

1        We are now confirmed in the heart of NYC  at the Marriot Marquee at Time Square NYC. The location and hotel is absolutely AMAZING and if you have never visited NYC you will not want to miss this opportunity :  http://www.marriott.com/hotels/travel/nycmq-new-york-marriott-marquis/



    


       The planning team is hard at work with many community members to make it a conference/summit experience!   To do so we are OPEN for suggestions and the best way to capture them for the planning committee is in the following online location: https://www.google.com/moderator/#16/e=201fc2


Want to suggest a keynote? A working session  on a framework, a committee meeting, a builder meet breaker dojo?  Want to DJ the at swank after party or recommend a restaurant or activity? 

There are NO bad suggestions only the suggestions that we don’t hear about in time and get supported by YOU the community to give us enough run-way to make them possible.

We will follow the Builder, Breaker, Defender track themes for talks and will be holding a Call for Trainers and Speakers when we reach that milestone.  

Check it out:   https://www.google.com/moderator/#16/e=201fc2  and over the next few weeks the website (http://www.appsecusa.org) website will be online with and supporting materials.


Tuesday, December 18, 2012

OWASP Italy Day 2012: Highlights

This year's Italy Day was held in the beautiful city of Rome. The conference had 210 attendees, and a number of great speakers in attendance! Please visit the OWASP Italy Day page for more information and highlights. 





Monday, December 10, 2012

AppSec 2013: OWASP Projects Track Call for Entries



This CFE is now closed. We will not be accepting any more submissions.

This year for AppSec APAC 2013, we are offering a limited number of FREE speaking opportunities to OWASP Project Leaders, as well as FREE conference admission for the representatives of the chosen projects. We would like to invite ALL OWASP Project Leaders to apply.

The APAC 2013 OWASP Project Track (OPT) forum differs from OSS in that only OWASP Projects can apply to participate. This is a great opportunity for OWASP Project Leaders to showcase their project as an official conference presenter. Please note that successful OPT applicants are responsible for developing and presenting in their designated time slot at the conference.

One of the benefits of participating in the AppSec APAC 2013 Project Track is that OWASP Project Leaders have the option of requesting financial assistance from the Foundation to cover travel and hotel expenses ONLY. This funding is only available to projects that have been selected to participate in the Project Track at AppSec APAC 2013. Preference will be given to OWASP Project Leaders that are applying to present at the conference that is closest to their region. Additionally, preference will be given to OWASP Project Leaders that have not presented or participated in the Project Track forum.

APPLICATION DEADLINES
OPT Applications are due: December 28, 2012

CONFERENCE DATE
February 19-22, 2013
All OPT presentations will be held between February 21-22, 2013.


For an opportunity to present your open source project through the OPT at AppSec APAC 2013, please submit your application using the OSPT APAC 2013 Application.

AppSec 2013: Open Source Showcase Call for Entries



This CFE is now closed. We will not be accepting any more submissions.

This year for AppSec APAC 2013, we are offering a limited number of FREE booth spaces to open source projects, as well as FREE conference admission for the representatives of the chosen projects. We would like to invite ALL open source projects to apply.

The APAC 2013 Open Source Showcase is not just for OWASP projects. All open source projects are encouraged to apply for an opportunity to showcase, demo, and/or promote their project. Showcase participants will be responsible for manning their booth during their allocated time.

One of the benefits of participating in the AppSec APAC 2013 Showcase is that OWASP Project Leaders have the option of requesting financial assistance from the Foundation to cover travel and hotel expenses ONLY. This funding is only available to projects that have been selected to participate in the Showcase at AppSec APAC 2013. Preference will be given to OWASP Project Leaders that are applying to present at the conference that is closest to their region. Additionally, preference will be given to OWASP Project Leaders that have not presented or participated in the OSS forum.

APPLICATION DEADLINES
OSS Applications are due: December 28, 2012

CONFERENCE DATE
February 19-22, 2013
All OSS presentations will be held between February 21-22, 2013.

For an opportunity to showcase your open source project at AppSec APAC 2013, please submit your application using the Open Source Showcase form

Wednesday, December 5, 2012

OWASP 2013

2013 planning is underway for OWASP. We've got lots of great local initiatives taking place at our numerous chapters all over the world.  I have no doubt these local efforts will continue to prosper (find your local chapter here).

 
Looking at OWASP overall, what do you want to see in 2013? 

Do you have areas where you'd like to focus and help OWASP grow?



--
Michael Coates | OWASP | @_mwc

Monday, December 3, 2012

OWASP Spain Chapter Receives Award!


OWASP Spain has received an award in recognition for their cooperation and continued support for the dissemination of web application security in Spain.

The award was given by the RedSeguridad Magazine in a ceremony in which prizes were awarded to various institutions and ended in a lively cocktail party.

Vicente Aguilera Diaz, the OWASP Spain Chapter Leader, was present to receive the award on behalf of the chapter. There were more than 200 attendees during the celebration, with all leading figures in the security industry from Spain present during the event.

This is the second award for the OWASP Spain Chapter, as in 2008 they received another important award from SIC magazine.

We would love to congratulate Vicente, and all active participants in the OWASP Spain Chapter. Well done to you all!

IBM Software Summit: OWASP Spain in Review


OWASP Spain was present this month at the most important event organized by IBM software in Spain: IBM Software Summit #START013.

Vicente Aguilera Díaz, the OWASP Spain Chapter Leader, was pleased to give a presentation at this congress of great importance for the country, which took place in Madrid.

With over 2000 attendees, OWASP had great visibility with participation at this event! 

You can find Vicente's presentation here: La Necesidad de Construir Software Seguro (The Necessity of Building Secure Software).
You can find more information about the event here: IBM Software Summit #START013.

Friday, November 30, 2012

AppSec USA 2012 - That's a Wrap!


Howdy!

Thank you so much for attending AppSec USA 2012 in Austin, TX.  We had a great time and hope you did too.  We look forward to seeing you at future AppSec events and hopefully you will come back to Texas for LASCON 2013.

We have the videos for the conference available at http://videos.2012.appsecusa.org/  If you are a vimeo user, you can follow our vimeo channel at https://vimeo.com/channels/appsecusa

We had a lot of requests for AppSec USA branded swag.  We asked our good friends over at Rocksports to set up a store for us and now we are happy to provide for all your swag wearing, AppSec promoting needs http://appsecusa.rockapparelshop.com/

If you haven't provided feedback on the event, we would appreciate hearing from you and about your experience with OWASP and the event: http://sl.owasp.org/usa12_survey

We ask that you Save the Date in your calendars now for LASCON 2013 in Austin, TX from Oct 22-25, 2013 and AppSecUSA 2013 in NYC from Nov 18-21, 2013.

Thank you for being a part of AppSec USA this year and briefly making Austin, TX the AppSec Capital of the World.

Thanks!

AppSec USA 2012 Planning Team 
James Wickett, Josh Sokol. David Hughes

Tuesday, November 27, 2012

OWASP AppSec APAC 2013: Call for Entries



We are pleased to announce that the OWASP South Korea chapter will host the OWASP AppSec APAC 2013 conference in Jeju, South Korea at the Hyatt Regency Jeju. The event will be composed of 2 days of training (February 19-20), followed by 2 days of conference talks (February 21-22).

We are currently accepting both Training and Talk submissions:

  • Call for Training - Submission Form, Deadline Dec. 17, 2012.
  • Call for Papers - Submission Form, Early Selection Deadline Dec 12, 2012. Final Selection Deadline Dec. 31, 2012

We are also accepting applications for the Open Source Showcase (project demos) and OWASP Project Track (OWASP project talks).


This CFE  for the Showcase is now closed. We will not be accepting any more submissions.
The APAC 2013 Open Source Showcase (OSS) is not just for OWASP projects. All open source projects are encouraged to apply for an opportunity to showcase, demo, and/or promote their project.

The APAC 2013 OWASP Project Track (OPT) forum differs from OSS in that only OWASP Projects can apply to participate. This is a great opportunity for OWASP project leaders to showcase their project as an official conference presenter.

Applications for the OSS and OPT are due Friday, December 28th 2012, and are considered on a rolling basis - so get moving!

More details on the Call for Training, Call for Papers, and Conference can be found at appsecapac.org. If you have any questions, please email the APAC conference committee: AppSecAPAC2013@owasp.org

Tuesday, November 20, 2012

AppSec USA 2012 Interview Series: Jeremiah Grossman & "Swarthy Fizz"


Jenny Hoff has posted two new interviews from AppSec USA 2012 in Austin, Texas. 

The third video in the AppSec USA interview series sees Jeremiah Grossman discuss the evolution of internet security, the most common vulnerabilities web applications have, and how users can protect themselves. This is followed by an interview with "Swarthy Fizz" who gives an in-depth look inside web counterintelligence. Making friends with hackers, infiltrating malicious networks, and recovering stolen classified information, "Swarthy Fizz" explains how its done and what it means for online security. 

The purpose of the interview series is an outreach program - to capture the voices of OWASP and continue to make AppSec more visible! These two interviews are the third and fourth in the series filmed and developed by Jenny Hoff. Stay tuned for the rest of the AppSec USA 2012 Interviews.

Friday, November 9, 2012

AppSec 2012 Interviews: Jeff Williams & Jim Manico


Jenny Hoff has started posting interviews she conducted at AppSec USA 2012 in Austin, Texas. Jenny is an international journalist who has been on CNN, Deutsche Welle, and did political reporting for several years at KXAN in Austin, Texas. 

She kicked it off with an interview with Jeff Williams on "What is OWASP?", and followed with an interview with Jim Manico who talks about the OWASP MissionThe purpose of the interview series is an outreach program - to capture the voices of OWASP and continue to make AppSec more visible! These two interviews are the first in the series filmed and developed by Jenny Hoff. Stay tuned for the rest of the AppSec USA 2012 Interviews.


 

 

Tuesday, November 6, 2012

OWASP Chairman of the Board Interviewed by CNN


Our OWASP Chairman of the Board, Michael Coates, was interviewed by CNN Money yesterday regarding online voting. The article focused on the issues associated with digital voting processes in the United States. 

Great job, Michael! Check out the story here!

Image via CNN Money

Monday, November 5, 2012

OWASP - Open Contract Positions

Hello OWASP Leaders, 

There are two, part time OWASP contractor positions posted here:
https://www.owasp.org/index.php/OWASP_Jobs
If you know of anyone who may be interested in these positions, please have them submit their information via the apply link on the page.

Thank you!

Kate Hartmann
+1 301-275-9403
Skype:  kate.hartmann

Complimentary Admission to AppSec Latam for OWASP Leader


OWASP AppSec Latam 2012 taking place in  Montevideo, Uruguay on November 18-21 
-- YES that's only a couple weeks away!  

OWASP leaders are able to get complimentary admission to the conference on Nov 19-20 and there are 2 seats for each of the training courses reserved for OWASP Leaders (available on a first come first serve basis).

More details on the conference schedule as well as all the training classes are available at: Appseclatam.org

To take advantage of this offer:
2. Select the General Admission and any Training Class you are interested in
3. Enter the appropriate discount code(s) at checkout:
For the complimentary conference registration, use discount code: OLEADER 

For the training courses, the discount codes are:
  • Matt Tesauro's Class (Hands on Web App Sec Testing the OWASP Way) - TESAURO_TRAINING_OLEADER
  • Ari Elias-Bachrach's Class (Java Secure Coding) - BACHRACH_TRAINING_OLEADER
  • Gianni Gnesa's Class (Advanced Vulnerability Research & Exploit Development) - GNESA_TRAINING_OLEADER


Need a hotel room?
We have a special discounted room rate at the Four Points Sheraton in Montevideo. To reserve your room, visit: https://www.starwoodmeeting.com/StarGroupsWeb/res?id=1209182075&key=76379


Contact the AppSec Latam team with any questions!

OWASP AppSec Latam 2012
Montevideo Uruguay
Training: November 18-19,
Talks: November 20-21
@appseclatam

AppSec USA 2012 Pictures!



We have finished uploading the majority of our AppSec USA 2012 pictures. Here they are!

We hope you had fun. Please do share a link if you were at the conference and took some yourself.

Tuesday, October 30, 2012

OWASP Initiatives Tutorial and Information

Leaders:  Please forward to your chapters and other collaborators.

OWASP Initiatives Tutorial and Information

Please join us for an overview of the phase 1 launch of the new OWASP initiatives plan.  Get the scoop on the "WHO, WHAT, WHERE, WHEN, and, WHY" behind this community outreach and collaboration.  Chapter leaders, Project leaders, and curious "lurkers" are especially encouraged to attend.

Submit your pre webinar questions to:
http://owasp4.owasp.org/contactus.html

Register for a session now by clicking a date below:
Mon, Nov 5, 2012 9:00 AM - 10:00 AM EST
https://www3.gotomeeting.com/register/238547438

Mon, Nov 5, 2012 9:00 PM - 10:00 PM EST
https://www3.gotomeeting.com/register/420108142

Once registered you will receive an email confirming your registration with information you need to join the Webinar.

System Requirements
PC-based attendees
Required: Windows® 7, Vista, XP or 2003 Server
Mac®-based attendees
Required: Mac OS® X 10.5 or newer
Mobile attendees
Required: iPhone®, iPad®, Android phone or Android tablet

Thank you!

Kate Hartmann
+1 301-275-9403
Skype:  kate.hartmann1

Friday, October 19, 2012

Last Chance to Cast Your Vote Election Ends Tonight!

Voting for the 2012 Board Election Ends In Just A Couple Hours

The last email blast was just sent.    

EVERY VOTE COUNTS!! Please cast your vote if you have not already done so.

For more information on the candidates, please see: https://www.owasp.org/index.php/Membership/2012_Election#2013_Candidates_.26_Interviews

Please be sure to check your spam folder if it is not in your inbox

Your Vote Counts!

Voting for the 2012 Board Election Ends Tonight, October 19, 2012 

For more information on the candidates, please see: https://www.owasp.org/index.php/Membership/2012_Election#2013_Candidates_.26_Interviews


Check your spam filters and add owasp@simplyvoting.com to your whitelist if you haven't received your email ballot

If you're still having problems submit them using our contact us form

Wednesday, October 17, 2012

Did you cast your vote for the 2012 Board Election yet?

The election is current running and emails have been sent out

Check your spam filters and add owasp@simplyvoting.com to your whitelist if you haven't received an email ballot

If you're still having problems submit them using our contact us form

For more information on the candidates, please see: https://www.owasp.org/index.php/Membership/2012_Election#2013_Candidates_.26_Interviews

Monday, October 15, 2012

Top Ten Reasons for AppSec USA

OWASP AppSec USA 2012 will be held in Austin this year October 23-26, at the Hyatt downtown. http://www.appsecusa.org

Here are the top 10 reasons why this is so fitting:

1. Austin is transforming, and OWASP aligns perfectly with all that is Austin because it is the preeminent GLOBAL, OPEN, FREE, CHARITABLE 501(c)(3) security organization.

2. Austin is a hotbed of cybersecurity cogniscenti and activity: evidenced by startups like Click Security, recently acquired Anue Systems and BreakingPoint Systems, IBM, Dell (acquired Secureworks), etc.

3. Cyber Warfare and Cyber Crime stories hit the headlines at an increasing rate; OWASP is the trusted source for the US National Cyber Security Division and organizations around the world see this impressive list:
https://www.owasp.org/index.php/Industry:Citations#National_.26_International_Legislation.2C_Standards.2C_Guidelines.2C_Committees_and_Industry_Codes_of_Practice

4. October is National Cyber Security, US Department of Homeland Security story: http://www.dhs.gov/national-cyber-security-awareness-month!!!

5. Austin's OWASP chapter is one of over 190 chapters worldwide, it is a thriving locus of the "brain trust" for sharing ideas and learning how to make software security VISIBLE so individuals and organizations can make informed decisions about true software security risks.

6. There are many security organizations, OWASP is where the best and brightest converge. OWASP does not endorse or recommend commercial products or services, allowing our community to remain vendor neutral with the collective wisdom of the best minds in software security worldwide. It's hard not to attend an information security conference where a presenter does not quote the "OWASP Top 10."

7. AppSec USA 2012 will have sessions custom-tailored for everyone from the CISO to the newbie software developer, including college students.

8. Austin creates a sense of community, OWASP creates and nurtures community, open sharing, and the promotion of FREE educational materials.

9. Austin is weird, and yes, OWASPers can be a little weird.

10. AppSec USA is coming to Austin, this is yet another proof point that Austin's role as "THE place to be" is truly multi-dimensional.

As more background, this video is an example of education for software developers: OWASP Appsec Tutorial Series - Episode 2: SQL Injection
http://www.youtube.com/watch?v=pypTYPaU7mM

For more information, click here: www.owasp.org, www.appsecusa.org

Friday, October 12, 2012

2012 Board Election

Voting for the 2012 Board Election has officially kicked off!  For more information on the candidates, please visit https://www.owasp.org/index.php/Membership/2012_Election#2013_Candidates_.26_Interviews

Wednesday, October 10, 2012

OWASP Featured on Google's Open Source Blog: Summer of Code 2012

OWASP is being featured in the Google Open Source blog as a result of our involvement in Summer of Code. Those involved describe it as being a fantastic experience for both mentors and students so hopefully we can repeat it next year.

Thank you to Fabio Cerullo, and all who contributed to the success of this initiative!


http://google-opensource.blogspot.ie/2012/10/whos-new-in-google-summer-of-code-2012.html












Image via Google Open Source Blog

Tuesday, October 9, 2012

Voting Starts This Friday For The OWASP Board 2012 Election


Members of the OWASP Foundation will be asked to vote for their elected leaders starting this Friday. Three candidates will serve a two year term.  Please take the time to review the transcripts and recorded interviews and cast your vote in support of the future of OWASP Foundation globally.

2013 Candidates & Interviews

Justin Derry - Australia
Jim Manico - Hawaii
Eoin Keary - Ireland
Matt Tesauro - Texas
Tom Brennan - NYC Metro

Voting period: October 12 - October 19, 2012 Look for an email to follow shortly with voting instructions

Election result announcement: October 19, 2012 at OWASP AppSecUSA Conference http://www.appsecusa.org

Monday, October 8, 2012

OWASP AppSec Latam 2012 - Register Now!


OWASP Community Members -

We are pleased to announce the training, talks, and complete schedule for OWASP AppSec Latam 2012 taking place in  Montevideo, Uruguay on November 18-21!

IN THIS MESSAGE: 
Training | Conference Schedule | Reserve your hotel room at the 4 Points Sheraton | Early Registration Deadlines | Thanks to our Sponsors

TRAININGThis year, we have 3 amazing 2-day trainings taking place:

  1. Java Secure Coding taught by Ari Elias-Bachrach, Appsec Labs
  2. Advanced Vulnerability Research and Exploit Development taught by Gianni Gnesa, Ptrace Security
  3. Hands on Web Application Testing: Assessing Web Apps the OWASP way taught by Matt Tesauro
Learn more about each of the classes by clicking on the "Training" tab at appseclatam.org


CONFERENCE SCHEDULE RELEASEDWe have great keynotes lined up from Jerry Hoff, Cristian Borghello, Pravir Chandra, and Hernan Racciatti in addition to a power packed conference line up including:
  • Tony Ucedavelez
  • Andres Riancho
  • Sebastian Bortnik
  • Alex Bauert
  • Dario Gomez
  • Breno Silva
  • Fernando Nunes
  • Nicolas Rodrigues
  • Mateo Martinez
  • Mauro Flores
  • Flavio de Cristofaro
  • Felipe Zipitria
  • Carlos Martinez - Cagnazzo

Learn more about each talk and view the conference schedule at appseclatam.org 

BOOK YOUR HOTEL ROOM BEFORE IT IS TOO LATE!
We have a special discounted room rate at the Four Points Sheraton in Montevideo. To reserve your room, visit: https://www.starwoodmeeting.com/StarGroupsWeb/res?id=1209182075&key=76379


EARLY BIRD REGISTRATIONEarly bird registration prices of only 3200.00 UYU (approx. 150.00 USD) are available to those that register before October 15! 
http://www.cvent.com/d/ycqskx


THANKS TO OUR SPONSORS
We are thankful for our supporters: Antel Telecommunications, Core Security, PWC, and Deloitte!

Thanks all.

OWASP AppSec Latam 2012, Montevideo Uruguay
Training: November 18-19,
Talks & More: November 20-21
appseclatam.org




Finalist for the 2012 WASPY Awards

The 2012 WASPY Award Finalists have been posted.  Check out who they are https://www.owasp.org/index.php/WASPY_Award_2012_Finalists

Thank you to all the candidates who participated and congratulations to the finalists!

Thursday, October 4, 2012

OWASP AppSec USA Update


Dear OWASP Community Members,

Hundreds (600+) of your colleagues have already registered for OWASP AppSec USA (Austin, TX) October 23-26, 2012. Don’t be left behind. Register now www.appsecusa.org

Speakers: 58 sessions, and 3 keynotes including:
  • Douglas Crockford’s keynote, “Securing JavaScript”
  • Jerry Hoff’s session, “AppSec Training, Securing the SDLC, WebGoat.NET and the Meaning of Life”
  • John Steven’s session, “Analyzing and Fixing Password Protection Schemes”
  • Dan Kuykendall’s session, “Get off your AMG and don’t REST on JSON” 

Training Update: There are seven 2-day training courses, and four 1-day training courses taught by industry experts. Slots are filling up quickly, with some classes already full. Select your training course here: http://www.appsecusa.org/schedule/trainings/  Details on training promotions are available here: http://owasp.blogspot.com/2012/09/appsec-usa-2012-training-promotions.html

Movie Sneak Preview: AppSec USA 2012 will feature a preview screening of the movie, “Reboot.” There are only 300 passes available, and they are filling fast. You need to register for the movie in order to attend, here are the details: http://www.appsecusa.org/schedule/reboot/

University Challenge: Are you a student already attending or interested in attending?  Learn more and sign up for our University Challenge here: https://docs.google.com/a/owasp.org/spreadsheet/viewform?formkey=dE5makFZSUo1eXNhSkVrMXc5TjZsSHc6MQ#gid=0

T-Shirt Update: Needless to say, you’ll want these awesome souvenirs. We’re placing the order this week, please register so we can forecast accordingly.

Already Registered? For those of you who have already registered, spread the word. Remember to pack your running shoes for the 5K charity run. Register here: http://www.appsecusa.org/schedule/5k-charity-run/

See you soon,

The AppSec USA Team

Friday, September 28, 2012

Membership Deadline Is This Sunday, Sept 30, 2012

DEADLINE REMINDER

The deadline for Paid and Honorary Membership is this Sunday, Sept 30 for eligibility to vote in the upcoming 2012 Election.  Please see https://www.owasp.org/index.php/Membership/2012_Election for more information.

Using the link above please check to be sure you are a current paid member.  If you are not, please consider becoming a member today  https://www.owasp.org/index.php/Newmembership  Your donation will help to continue to provide vendor neutral services and to continue to develop quality tools and documentation in our open source community.

If you would like to apply for honorary membership please complete the honorary membership form before September 30, 2012.
https://docs.google.com/a/owasp.org/spreadsheet/embeddedform?formkey=dHA4dno2TlhSa0pVSUNQclZCOWROV0E6MQ 

Thursday, September 27, 2012

AppSec USA 2012: Training Promotions, Deadlines, WASPY Awards, and Open Source Showcase

OWASP Community Members -

A few updates and reminders on our upcoming global event: AppSec USA 2012 taking place on October 23-26 at the Hyatt Regency in downtown Austin, Texas!

IN THIS MESSAGE: 
Training Promotions |  Reserve your hotel room by October 1 | Register by Sept. 30 |  Conference Schedule | Waspy Awards | Open Source Showcase | Thanks to our Sponsors

TRAINING PROMOTIONS

Win a free pass to Sherif Koussa's Training: Writing Secure J2EE Code
Winner must solve a Java riddle plus get the most amount of retweets, LI comments and likes or Facebook likes. 

Several of our trainers have decided to offer a "3 for 2" deal on their training course.  If your company wants to send 3 people to a training course - you can do it for the price of 2 training registrations.  Put it another way - buy 2 training registrations, get a third for free!   If you are interested in taking advantage of this promotion email sarah.baso@owasp.org for registration instructions and a discount code.  Training classes included in this offer:
To learn more about all of our training courses, visit: http://www.appsecusa.org/schedule/trainings/


DEADLINE: RESERVE YOUR HOTEL ROOM BY OCTOBER 1
The Hyatt has extended the cut-off date for our room block at the discounted rate of $189/night to OCTOBER 1.  Dont get stuck cabbing it every day, get your hotel room today. Book at the Hyatt Regency Austin under our discounted rate > https://resweb.passkey.com/Resweb.do?mode=welcome_ei_new&eventID=6604435


REGISTER BY SEPTEMBER 30th
Registration prices go up by $100 after September 30th, So sign up today for a great deal:  http://www.appsecusa.org/register/


CONFERENCE SCHEDULE
We have released the schedule (still subject to change) at schedule.appsecusa.org and the mobile version at m.appsecusa.org.  You can create your own personal schedule, connect with other attendees and even import your schedule into Outlook or iCal.


Web Application Security of the Year (WASPY) Award 
Every year a group of individuals including researchers, developers, security professionals and others work to ensure the security of web applications. Some of these individuals are featured in news stories or at conferences as recognized experts. But there are many other ‘unsung heroes’ that work every day to improve web application security and yet are rarely recognized. This year OWASP will initiate the first annual Web Application Security Person of the Year  (WASPY) award. The WASPY awards are solely funded by sponsors.

We would like to thank our Platinum Sponsor Qualys and our Silver Sponsor Trustwave for their additional contributions to this award.  

It's not too late to sponsor the WASPY awards.   Please contact Kelly Santalucia kelly.santalucia@owasp.org for more information or with any questions you may have.


OPEN SOURCE SHOWCASE
Don't miss the OWASP Open Source Showcase starting on Thursday, October 25th and ending on Friday, October 26th! A handful of open source projects were selected to showcase, demo, and promote their work at the AppSec USA conference this year. 
 The projects showcasing are: 

  • OWASP Hackademic Challenges
  • Armitage
  • ThreadFix
  • Brakeman
  • ModSecurity
  • Mantra OS

The Open Source Showcase is a great opportunity to participate in live demos, and meet the Project Leaders face to face. The showcases run from 9:00am to Noon, and from 2pm to 5pm on both Thursday and Friday. Please contact projects@owasp.org for more information. 

THANKS TO OUR SPONSORS!
We are EXTREMELY thankful to our donors and sponsors:

Adobe, NTOBJECTives, Aspect Security, Checkmarx, iMPERVA, Cigital, Qualys, NetSPI, Veracode, IBM, f5, WhiteHat, Army INSCOM, Trustwave Spiderlabs, Impact Security, Denim Group, Gemalto, Gotham Digital Science, Symplified, Blueinfy, Core Security Technologies, Radware, RSA Security, Rapid7, Falling Rock, and Pwnie Express.

THANK YOU! We couldn't pull this off without your generous support!



OWASP AppSec USA 2012, Austin TX
Training: October 23-24,
Talks, CTF, Showroom, & More: October 25-25
www.appsecusa.org
@appsecusa