Thursday, July 31, 2014

July 30, 2014 OWASP Global Connector


OWASP Global Connector
July 31, 2014 | | www.owasp.org | Contact Us | Brought to you by the OWASP Foundation
owasp projects

Featured OWASP Project

OWASP Proactive Controls
The OWASP Top Ten Proactive Controls is a list of security techniques that should be included in every software development project. They are ordered by order of importance, with control number 1 being the most important. This document was written by developers for developers to assist those new to secure development.
For more information, please contact the Project Leaders, Jim Manico or Jim Bird

New OWASP Project

OWASP Top Trumps for Projects
If you haven't played Top Trumps, it's a simple game that can be learned in 30 seconds. It is as addicting as it is fun, with the added advantage of being educational in the process. Each card in the deck represents a real world OWASP project with 6 attributes that can be used to challenge other projects. The purpose of this project is to raise awareness of all OWASP projects in a fun and community oriented way. For more information, please contact the Project Leader, Mark Miller.

Project Announcements

Technical Reviewers Needed!
The Code Review Guide Project is forming a dedicated team of technical reviewers. They are looking for a small group of individuals for this task, around 5 developers. Please let Please contact Gary Robinson or Larry Conklin know what your qualifications are, and they will get back with you on specific work tasks.
Developers Needed!
The Code Review Guide Project is also seeking developers who have examples in PHP, Ruby on Rails, HTML5, Drupal, Coldfusion, CodeIgniter, Java Spring and Structs. The examples they need are for SQL injection, framework issues, iss configuration errors, XSS and other issues that a code reviewer would raise a red flag if the reviewer sees one of these examples in the code being reviewed. If would be great if the example bad code has an example of how the code should be written in a secure manner. This is an exciting team that is doing something that has a very real impact on the larger software developer comm unity. Please contact Gary Robinson or Larry Conklin
Projects Task Force Code Analysis Reports
Over the past week, Johanna Curiel has been putting together code analysis reports for flagship candidate projects. The results of these reports will be posted on the Projects Task Force page in this week and next. Click Here for more information on the task force and it's progress.
Social Media

OWASP Foundation Social Media

LinkedIn
Twitter
Google +
Facebook
Ning
StackOverflow
membership

Thank you to our new Corporate Members:

  • SMARTRAC TECHNOLOGY GMBH, and
  • Solutions II, Inc
Honorary Membership applications now being accepted.
CLICK HERE to find out if you qualify for Honorary Membership Deadline to submit your application is September 30, 2014.
.
conferences

Global AppSec Events in 2014

AppSec USA 2014 (September 16 - 19, Denver, CO)

Upcoming Regional Events

OWASP Korea Day 2014 Workshop (June 17, 2014, Seoul, South Korea)
LASCON 2014 (October 21 - 24, Austin, TX)

Partner and Promotional Events

OWASP has partnered with these great events in beginning of 2014 to grow our community and build awareness around software security. If you want to learn more about OWASP's involvement or will be attending and want to help out contact us
BlackHat (August 2-7), Las Vegas, NV. OWASP Members receive $200 off BH briefings with code: owaBR200off.
BSides LV, (August 5-6), Las Vegas, NV.
OWASP is looking for volunteers to help promote OWASP at BSides. Earn a Full BH conference pass by volunteering a total of 8 hours at BSides. Contact Kelly Santalucia for details.
EC-Council TakeDown Con, (August 14-19), Huntsville, AL.
Fraud Summit Toronto, (Sept 8, 2014) Toronto, Canada.
(ISC)2 Security Congress, (Sept 22 - Oct 2), OWASP Members save $355 off of the non-(ISC)2 Member Full Conference Pass. Attendees can expect over 80 educational sessions designed to strengthen cybersecurity defenders, focus on current and emerging issues, best practices, and challenges facing cybersecurity leaders.
EC-Council Hacker Halted(October 12-17, 2014) Atlanta, GA
ISSA International Conference (October 22-23), 2014, Orlando, FL
Suits & Spooks, (December 14), Singapore.
contrast
communication

2014 WASPY (Web Application Security People of the Year)

Member voting will begin Friday, August 8, 2014

The third annual WASPY awards voting will begin August 8th. OWASP members will be receiving a notification and a link to cast your vote from our voting provider, Simply Voting. This is YOUR opportunity to recognize another in our community for their outstanding efforts, so be sure to congratulate all the nominees and cast your vote for the one nominee in each category who will be publicly recognized in during an awards ceremony at AppSec USA in Denver.
You can read all about the nominees HERE

2014 Global Board of Directors Election

Please visit our 2014 Board Elections page for frequent updates. Our Call for Candidates is only open until August 15! Please submit your candidacy here.
Once confirmed, the candidates will conduct individual interviews answering questions from the community. Anyone can submit a question(s), vote up or vote down existing questions. The top 5 to 6 questions will then be used for each candidate's interview. If you have a question you would like to submit, please do so here.
For a complete Election Time line, Click Here

OWASP Community Manager Position - Open for applicants


Are you interested in working for OWASP and supporting volunteer efforts around the world? Consider applying for our Community Manager position.
OWASP Community Manager
Full Time, Salaried
The OWASP Community Manager is responsible for coordination and oversight of volunteer opportunities and initiatives for the OWASP community. Furthermore, this position will focus on providing operational support to OWASP Chapters globally and is responsible overseeing and disseminating the organization's policies, objectives, and initiatives as they relate to OWASP Chapters.
Details about the position and how to apply
Please help us spread the word about the position by posting to your chapter/project lists, adding to applicable job boards, or forwarding to any individuals that you think would be interested.

Just for Fun

Congratulations to Steven Avery who was the first person to solve last week's challenge: 93 hens to produce 12 eggs in 6 days
Click here to view last issue's puzzle
Here is this issue's challenge...
A rose-red city is half as old as Time. One billion years ago the city's age Was just two-fifths of what Time's age will be A billion years from now.
Send your answers to our comment desk for a chance to win a prize. Winners will be announced in the next connector.
Can you comput how old the crimson city is today?
isc2 register



No comments: