Detroit

Meetings
Our next meeting is on December 13th. That meeting will again be held at Liberty Center One, 4815 Delemere Avenue, Royal Oak starting at 7pm.

This month's speaker is Kevin Poniatowski who will be presenting on integrating security into SDLC processes, for both small and large development teams:

Adding security into your SDLC can be an intimidating task for a development team that is asking, "Where do we start?". This talk will introduce some of the most beneficial security practices that can be added to an SDLC, how they can be implemented within a large or small development team, and describe their time footprint within a development schedule.

Kevin Poniatowski began his information technology career by working for over eleven years as an application developer in the defense industry. Focusing on safety of flight issues for pilots and navigators within our armed forces led him into the application security field where he has spent the last five years teaching application security to developers, testers, and project managers from some of the largest organizations in the world. Kevin is currently the Director of Instructor led Services for Safelight Security.

Previous Meetings
September 13th:


 * Introductions
 * Chapter and OWASP Global Updates
 * Presentation: Covert Channels and Controls in .NET, J Wolfgang Goerlich
 * Discussion and Questions

Video: Covert Channels and Controls in .NET

June 14th Agenda:


 * Introductions
 * Chapter and OWASP Global Updates
 * Presentation: SQL Methadone: A guide on not becoming the web equivalent of a gutter punk, Brad McMahon
 * Discussion and Questions

March 8th Agenda:


 * Introductions
 * Overview of OWASP & Chapter Direction
 * Presentation: Finding, Exploiting, and Eliminating XSS Flaws, Josh Little
 * Discussion and Questions

Video: XSS Files Video <-- Note: The audio did not come out that clear in this recording. We apologize for that.

Slides: XSS Files PPTX

Social Media
To keep up with the Detroit Chapter, please subscribe to our mailing list above. You can also follow us on Twitter (@OWASPDetroit).