owasp london chapter meeting 18th may 2017 · 2017. 5. 18. · • manchester • newcastle •...

Report

Post on 16-Oct-2020

1 Views

Category:

Documents

0 Downloads

Preview:

Click to see full reader

TRANSCRIPT

OWASPLondonChapterMeeting18thMay2017

LondonChapter

ChapterLeaders:• SamStepanyan(@securestep9)

• SherifMansour(@kerberosmansour) KeepingInTouch:➤ JointheOWASPLondonmailinglist➤ Follow@OWASPLondononTwitter ➤ “Like”OWASPLondononFacebook➤ SubscribetoOWASPLondonChannelonYouTube➤ Chatwith#chapter-londonteamowasp.Slack.com

http://owasp.slack.com

LiveStream

WeareLIVESTREAMINGTHISEVENT:

facebook.com/OWASPLondon

http://facebook.com/OWASPLondon

Agenda

• Networking,pizza&drinks• WelcomeandOWASPUpdate-SamStepanyan&SherifMansour

• ThreatModelingAgainstPaymentSystems-Dr.GrigoriosFragkos

• LightningTalk1:OWASPSummit&OWASPTop102017Changes-DinisCruz ------------break-------------------------------

• UnsafeDeserializationAttacksInJavaandANewApproachToProtectTheJVM-ApostolosGiannakidis

• LightningTalk2:Securitysolutionsfordeveloperswhohavenotimeforsecurity-EdwinAldridge

• Networking&Beer-AllBarOne

OWASP

• WeareaGlobalnot-for-profitcharitableorganisation

• Focusedonimprovingthesecurityofsoftware

• Vendor-NeutralCommunity

• CollectiveWisdomoftheBestMindsinApplicationSecurityWorldwide

• Wecollaborativelydevelopandprovidefreetools,guidance,standards

• Allmeetingsarefreetoattend(*freebeerincluded)

Worldwide

• Over160localChaptersaroundtheworld

UKChapters

• Belfast

• Birmingham

• Bristol• Cambridge

• Leeds

• London• Manchester

• Newcastle• RoyalHolloway(inactive)• Scotland

• Sheffield• Suffolk

BecomeaMember

WeareallVOLUNTEERS!(45,000worldwide)

Membership

$50/year!

MemberBenefits

➡SupportEthics&PrinciplesoftheOWASPFoundation

➡UnderscoreyourawarenessofApplicationSecurity

➡ Increaseyourvalue,knowledgeandexpandyourskills,networkwithprofessionalswhosharesimilarconcerns,interestsandgoals,collaborateonprojects

➡GetexclusivediscountsonAppSecEU/USAandmanyotherGlobalCyberSecurityConferences&events

➡DonatetoyourlocalChapterandProjects

➡Getan@owasp.orgemailaddress

➡VOTEonissuesthatshapedirectionofOWASPcommunity

$50/year!

http://owasp.org

OWASPMember

Ifyouareamemberalready-collectthisstickerfromtheChapterLeaders

OWASPCorporateMembers

PremierMembers

Premiermembers(donate$20,000/year):

LondonChapterSupporters

OWASPBooks

15

http://4.bp.blogspot.com/_keJwBEZPgZE/SdgcWlR7KjI/AAAAAAAAB9A/rwJSK9RE974/s1600-h/OWASP+Code+Review+by+OWASP+Foundation+(Book)+in+Computers+&+Internet.png

StandardsandGuidelines

OWASPTools-ZAP

FREEeBook

https://bit.ly/freenodejsbook

EssentialNode.jsSecurityforExpressJSWebApplications

Hands-onandabundantwithsourcecodeforapracticalguidetoSecuringNode.jswebapplications.

https://bit.ly/freenodejsbook

GoSecureCodingPracticesFreeeBook

GoLanguage- WebApplicationSecureCodingPractices

* Avoidcommonmistakes* Hands-ondetailon…* howtocodeinGosecurely* DonatedbyCheckMarx* HostedonGitBook* Youcancontribute,notjustread

https://bit.ly/go-scp

https://bit.ly/go-scp

AppSecEurope2017

8-12May2017,BelfastNorthernIreland

OWASPJuiceShop

*juice-shopv3.1.0*juice-shop-ctfv1.1.0

OWASPThreatDragon

OWASPTop102017RC

Pleasesendcomments: OWASP-TopTen@lists.owasp.org

CommentsrecommendingchangestotheitemslistedintheTop10shouldincludeacompletesuggestedlistof10items,alongwitharationaleforanychanges

OWASPSummit2017

BSIDESLondon

BSidesLondon2017BiggestCommunity-Driven InfoSecConference

07.June.2017

ILECConferenceCentre47LillieRoadLondonSW61UD

WEWILLBETHERE!

BSIDESAthens

Saturday,24thJune2017

InfoSecEurope2017

AppSecUSA2017

AllDayDevOps

JoinusonOctober24,2017

KeynoteIntro

• Beforeintroducingthekeynotespeaker,let’sremembersomevulnerabilitieswithownlogos..

Logos

@drgfragkos

DrGrigorios“Greg”Fragkos

TalkTime!

• DrGrigorios“Greg”Fragkos

• DinisCruz

• ApostolosGiannakidis

• EdwinAldridge

StayinginTouchOWASPLondon

OWASPLondonProvisionalDatesoffuturemeetings:

27thJuly2017

“Like”usonFacebookhttps://www.facebook.com/OWASPLondon

WatchusonYouTube:YouTube.com/OWASPLondon

VisitOWASPLondonChapterwebpagehttps://www.owasp.org/index.php/London

JoinTheOWASPLondonMailingList:http://lists.owasp.org/mailman/listinfo/owasp-london

Slack:owasp.slack.com#chapter-london

FollowusonTwitter@owasplondon

https://www.owasp.org/index.php/London

PresentYourTalk

CallForSpeakersForFutureEvents

DoyouhaveagreatApplicationSecurityRelatedTalk?

3Tracks:

•Breakers•Defenders•Builders

Submittheabstractofyourtalkandyourbioto:

owasplondon@owasp.org

ThankYou!

Speakers:

• DrGrigoriosFragkos• DinisCruz• ApostolosGiannakidis• EdwinAldridge

AllslideswillbepublishedonOWASP.ORGandvideorecordingswillbeonOWASPLondonYouTubechannelinafewdays

Hostsforthisevent• WorldPay

• Attendees(you!)

http://owasp.org

PubTime!

• NetworkingandDrinksat:

• AllBarOne:103CannonStreet

• TheCannickTapps

top related

owasp mosc2010 - tour of owasp projects
Documents
the owasp foundation owasp top 10 2010 kuai hinojosa...
Documents
zena holloway
Documents
on how to make adorno scream: some notes on john …196 ¥...
Documents
inactive lifestyle. risk!! inactive life style = the same...
Documents
owasp toronto - owasp foundation | open source foundation
Documents
owasp education owasp global summit portugal 2011
Documents
the owasp foundation owasp busting frame busting
Documents
owasp @ iscte-iul, owasp e owasp portugal
Documents
owasp the owasp foundation
Documents
nsams to be declared inactive · title: nsams to be...
Documents
inactive companies
Documents
v scf ras gdp inactive nucleus scf ras gdp inactive nucleus
Documents
review owasp 2014 - owasp perú
Software
new privacy in android 11 and owasp mobile security ·...
Documents
holloway 2013
Documents
antunes holloway
Documents
owasp @ iscte-iul, owasp top 10 2010
Technology
owasp top 10 schulung › ... › 2018 ›...
Documents
holloway report
Documents