Los Angeles

From OWASP

1 Welcome to the OWASP Los Angeles Local Chapter
2 Local News
3 Upcoming Chapter Meeting
4 Main Presentation
5 Would you like to speak at an OWASP Los Angeles Meeting?
6 Los Angeles Chapter Leader

Welcome to the OWASP Los Angeles Local Chapter

Welcome to the local Los Angeles chapter homepage. The chapter leader is Cassio Goldschmidt

Participation

OWASP chapter meetings are free and open to anyone interested in application security. We encourage members to give presentations on specific topics and to contribute to the local chapter by sharing their knowledge with others. Prior to participating with OWASP please review the Chapter Rules.

To join the chapter mailing list, visit our mailing list homepage. The list is used to discuss the meetings and to arrange meeting locations. Please check the mailing list before coming to a meeting to confirm the location and time and to catch any last minute notes.

Mailing list

Email archives

funds to OWASP earmarked for LosAngeles.

Local News

Upcoming Chapter Meeting

Date: Wednesday November 19th 2008 6:30PM

   Meeting Location
   Symantec Corporation
   900 Corporate Pointe
   Culver City, CA 90230
   Laguna Conference Room

Main Presentation

A new web attack vector: Script Fragmentation

This presentation will introduce a new web-based attack vector which utilizes client-side scripting to fragment malicious web content.

This involves distributing web exploits in a asynchronous manner to evade signature detection. Similar to TCP fragmentation attacks, which are still an issue in current IDS/IPS products, This attack vector involves sending any web exploit in fragments and uses the already existing components within the web browser to reassemble and execute the exploit.

Our presentation will discuss this attack vector used to evade both gateway and client side detection. We will show several proof of concepts containing common readily available web exploits.

Stephan Chenette is a Senior Security Researcher who helps lead Websense Security Labs working on malcode detection techniques. Mr. Chenette specializes in research tools ranging from kernel-land sandboxes, to static analysis scanners. He has released public analyses on various vulnerabilities and malware. Prior to joining Websense, Stephan was a security software engineer for 4 years working in research and product development at eEye Digital Security.

Please sign up to our Los Angeles OWASP mailing list.

Everyone is welcome to join us at our chapter meetings. Meeting agenda will be sent to the Los Angeles OWASP mailing list prior to the meeting. List archives are also available for members who want to take a look at the latest discussion topics prior to the event.

Would you like to speak at an OWASP Los Angeles Meeting?

Call for Papers (CFP) is NOW OPEN ~ to submit educational topic for upcoming meeting please submit your BIO and talk abstract via email to Cassio Goldschmidt. When accepted it will be required to use the following powerpoint OWASP Template

This page provides a list of previous presentations conducted at the Los Angeles Chapter.