Thursday, August 1, 2013

OWASP Global Connector August 1, 2013


 OWASP Global Connector August 1, 2013
 VERY IMPORTANT COMMUNITY INFORMATION AND DEADLINES!!!!!

PROJECT_SHORT_BANNER (1)


FEATURED OWASP PROJECT

OWASP PHP Security Project

The OWASP PHP Security Project was developed to gather secure PHP libraries, and to provide a full featured framework of libraries for secure web applications in PHP.  The project aims to separate de-coupled libraries, and develop a while secure web application framework.  Many aspects of this project have been developed, and are being added to the OWASP project wiki page.  If you would like to contribute, please visit the OWASP PHP Security Project GitHub Repository, or contact Project Leader Abbas Naderi for more information.

NEW OWASP PROJECTS


OWASP WebSandBox Project

This project is a  Web Sandbox written purely in Perl, similar to Fogger.  The WebSandBox Project is a sandbox web application that uses javascript v8, and it also uses Webkit to act as the browser.  The tool is also useful for web testing with Pharos proxy or ZAP, and for getting results only for the sandboxed site.  For more information, please contact the project leader Greg Disney.


OWASP Dependency Track Project

Dependency-Track is a Java web application that allows organizations to document the use of third-party components across multiple applications and versions.  For more information, please contact the project leader, Steve Springett

OWASP Security Principles Project

Legacy The idea is to distil the fundamentals of security into a set of concise principles that must be present in any system through out the requirements, architecture, development, testing and implementation of a system.  Please visit the OWASP Security Principles Project GitHub website for the list.  For more information, please contact the project leader, Dennis Groves.


PROJECT ANNOUNCEMENTS

OWASP Periodic Table of Vulnerabilities:  Open Comment Phase

The Would you like to eliminate web application vulnerabilities forever?  The OWASP Periodic Table project is designed to help do just that!  The project is currently in the open comment phase.  We need your help to make sure we have prescribed the right mix of solutions, and the project meets the high standards of quality you have come to expect from OWASP.  Please use the survey link below to guide you through the project materials and collect your feedback.  You can find the survey here.  If you need more information on the project, please contact the project leader, James Landis.


OWASP Testing Guide Project:  Contributors Wanted

The OWASP Testing Guide Project is currently in need of authors to complete the next version of the guide.  Co-Project leaders, Andrew Muller and Matteo Meucci, are looking for experienced writers and reviewers to help complete this project.  Many of the main tasks required for release are now complete, so now we're focused on a sprint to release.  For this we need your help.  We're asking OWASP leaders to help us find and revive contributors with the time, expertise, and most importantly, commitment to complete the writing of Testing Guide articles.  So, if you've worked on the Dev or Code Review Guide, we could also use our help.  Please reach out to Andrew and Matteo if you are interested.

OWASP Women in AppSec News!

We are happy to report that the Women in AppSec Program has reached is fundraising goal for the year.  Thank you to our wonderful sponsors, iSEC Partners, the OWASP Boston, OWASP Long Island, OWASP Dublin, and OWASP MSP Chapters.
As a result, the Women in AppSec Call for Applicants is now open.  Apply if your are a female student at either the undergraduate or graduate level, an instructor, or a professional working woman who is interested in sponsorship to attend the AppSec USA 2013 Conference in New York City.  Apply Here:  Application Form






 new conf banner
GLOBAL AppSec CONFERENCE ANNOUNCEMENTS
798px-Logo_AppSecEU2013-Nr3backg50
OWASP AppSec EU 2013 -

This event is coming up FAST!  Register now to secure your spot!

The Full Conference Schedule is Online

Banner_Peru
OWASP AppSec LATAM 2013
Call for Training and Call for Papers are now open (Deadline is August 2, 2013) - Click Here to submit your training or your talk

AppSec USA 2013 - Simple Banner
OWASP AppSec USA 2013

Early bird registration closes on August 15th Register now to save $300 

Click Here for the full schedule of Talks and Training Classes

Contact Us to secure your sponsorship opportunity for the exhibit hall or for the career fair

CHAPTERS CALL TO ACTION

We want ALL chapters, GLOBALLY, to share in the success of this event.  For each ticket to AppSec USA that your chapter sells between July 15 and August 15, your chapter will receive $50 USD in your chapter's account.  Be sure your referrals enter in the appropriate promotional code during registration.

AppSec USA promotional resources

List of Chapter Codes to be entered during registration

LOCAL AND REGIONAL EVENTS

OWASP India Conference 2013 - Aug 30-31; New Delhi, India
Ghana Cyber Security - Sept 5-6
OWASP New Zealand Day 2013 - Sept 11-12; Auckland, New Zealand
LASCON 2013 - Oct 24-25, Austin, TX


new outreach banner

PARTNER AND PROMOTIONAL EVENTS
OWASP has partnered with these great events in the latter half of 2013 to grow our community and build awareness around software security.  If you want to learn more about OWASP's involvement or will be attending and want to participate, please

CONTACT US


new membership banner

CORPORATE MEMBERS


Thank you to:
Ernst & Young and Quotium
for their renewals



TIME IS RUNNING OUT!


UPCOMING DEADLINES:

AUGUST 16, 2013

SUBMIT YOUR CANDIDACY FOR THE GLOBAL BOARD OF DIRECTORS

SUBMIT YOUR NOMINEE
FOR THE 2013 WASPY AWARDS 


September 30, 2013

Deadline to join or to renew your membership to ensure eligibility to vote in the 2013 election and WASPY awards


WELCOME!!!!!!

Please welcome OWASP's new Event Manager, Laura Grau

laura
Laura Grau worked for the past 6 years in an international research center in Barcelona.  During these years she has gained a solid background organizing a wide variety of events.  Her complete bio can be found here

Marketing Collateral:  Seeking Community Input

The OWASP Ops team is happy to report that the marketing project we have been working on with Sisterworks and Design Foundry is in the final stages of delivery.  We are now at a point where we would like to seek community input on a handful of the most critical marketing pieces we have developed with our contractors.  We have set up a wiki page to facilitate comments and votes from the community.  You can find more instructions on the process on the wiki page.  Please visit the Marketing community Input page to view, comment, and to vote on each marketing piece.

globe

OWASP PRESENTS
A GLOBAL CTF!!

OWASP has partnered the Irish Honeynet Project (a not for profit organization) to conduct the first ever GLOBAL CTF!

This worldwide challenge will be launched at AppSec EU in Hamburg, Germany in August and run through mid November.  The winners will be announced at AppSec USA in New York!
Preliminary information can be found here
Keep checking back for frequent updates and news! 



GET YOUR CREDITS!

Register to participate in the OWASP Webinar Series.  This provides an opportunity to review some of the top security talks AND earn CPE credits!

the Next Webinar is scheduled for Wednesday August 7, 2013. 
LIVE - Jack Mannino
Jack Mannino unveils the MAJOR release forGoatDroid

Wednesday August 7

at 10am EDT (Live Webinar)

register here
and
at 9pm EDT (replay of the Live Webinar)

register here

We want to highlight projects and research!  If you have a topic that you would like to present, please submit an abstract here:  Contact us




--


Kate Hartmann
+1 301-275-9403

No comments: