OWASP Day KL 2016

=Welcome=

OWASP DAY KL 2016 - Malaysia
OWASP Malaysia will host OWASP Day KL 2016 in Kuala Lumpur, Malaysia from Nov. 15 to Nov. 17, 2016 and collaborate with UniKL-MIIT &amp;. The events will gather OWASP leaders, security experts, executives, technical thought leaders, developers, scientists and researchers from Malaysia and around the world for in-depth discussions of cutting-edge application security issues. The summit will draw participation from major Malaysia and global organizations across various verticals including government, information technology, services and consulting, telecommunications, finance, e-commerce, Internet, universities and research institutes. About 200 people are expected to attend the events. exhibition and lunch will be held at the summit, providing sufficient networking opportunities.

Theme "Empowering Knowledge Towards Security Readiness"

Official Invitation Letter for OWASP Day KL 2016 [ English] &amp; [ Malay].

'''For the events day we have limited OWASP T-shirt from OWASP Foundation for the most twitter using hash-tag #owaspmy. We will calculate your twitter base on twitter status.'''

FaceBook Event Page OWASP Day KL 2016

=Registration=

Registration Now Open!!!
OWASP Day KL 2016 Registration Form   Please click to download the registration Form

Who Should Attend OWASP Day KL 2016:


 * Application Developers
 * Application Testers and Quality Assurance
 * Application Project Management and Staff
 * Chief Information Officers, Chief Information Security Officers, Chief Technology Officers, Deputies, Associates and Staff
 * Chief Financial Officers, Auditors, and Staff Responsible for IT Security Oversight and Compliance
 * Security Managers and Staff
 * Executives, Managers, and Staff Responsible for IT Security Governance
 * IT Professionals Interesting in Improving IT Security
 * Lecturer &amp; Student it IT field

We need to announce that our training are limited seat. So hurry up register to book your seat only 30 seat per class.

All the attendee will be provided Attendee Certificate by UniKL &amp; OWASP Malaysia

For this events we would like to announce that this events are claimable by HRDF



=Keynotes=



TBA

=CFP and CFT=

CALL FOR Presentation
OWASP Day KL 2016 Conference will be a major international forum for the presentation of research results, cutting-edge ideas and in-depth discussions in the field of application security. OWASP Day KL 2016 Conference invites application security researchers, thought leaders and developers worldwide to submit papers for the opportunity of presenting to expected participants.

The topics we are seeking include, but are not limited to:


 * 1) Web Application Security
 * 2) Mobile Application Security
 * 3) Cloud Application Security
 * 4) Software and Architecture Patterns for Application Security
 * 5) Metrics for Application Security
 * 6) OWASP Tools and Projects
 * 7) Secure Coding Practices (J2EE/.NET)
 * 8) Application Security Testing
 * 9) New Attacks and Defense
 * 10) Other subjects related to OWASP and Application Security

To make a submission:

[ Call For Presentation] OPEN
Each talk should be limited to 30 minutes, followed by a 5 minute question session.


 * Submission deadline: August 20, 2016.
 * Notification of acceptance: August 22, 2016.
 * Presentation slides due: September 20, 2016.

CALL FOR Training
In-conjunction with OWASP Day KL 2016 also provided workshop. It will separate day with the seminar and will conduct 2 full day. It will 5 major topic on the workshop.


 * Malware Forensic
 * Penetration Testing
 * Weaponizing Malware 101
 * Reverse Engineering
 * Secure Web App Development

[ Call For Training] OPEN

 * All the speaker &amp; trainers will be given Speaker Honor Cert from UniKL &amp; OWASP Malaysia

=Trainers=

Trainers
We have 5 Professional Trainer for the training

Muhammad Abdul Aalim Ahmad Rozli

Aalim Rozli is a local it security enthusiast which currently based in Kuala Lumpur. While his full-time job is doing security testing, he did also spend some of his time working on simple web development. As a security tester, he have come across various security issue pertaining web application which later he try not to repeat the same in his development. Seeing from security tester and developer perspective, he believe that most of the vulnerabilities, if not all, can be addressed during development stage. And, to make that possible, it is essential to have a developer with some degree of awareness on why need to secure code.

Syed Zainudeen Mohd Shaid

Dr Syed Zainudeen Mohd Shaid is a lecturer at Universiti Teknologi Malaysia (UTM) where he teaches subjects like Penetration Testing, Security Programming, OS Exploitation and other security related subjects. A member of the Information Assurance & Security Research Group (IASRG), he is active in Malware Research. He also does training and consultancy on Web Security, Secure Coding, Android, and embedded systems. He loves gadgets and enjoys exploring new things related to security.

Ade Yoseman Putra

Ade Yoseman Putra is likely entrepreneurship.. Have a small business and working under government too as cyber security at ID-SIRTII equivalent to MyCERT,CSM. I ever taught cyber security in ministry of defense republic of Indonesia as an instructor (april th 2016- june th 2016) And cyber crime forensic with my team in ministry of communication and informatics republic of Indonesia (june th 2016) information security speaker in ID-SIRTII/CC (Indonesia Security Incident Response Team on Internet Infrastructure/ Cordination center) Penetration testing (whitebox and blackbox ) a (top airline in indonesia). And have experience worked in Kuala Lumpur Malaysia (2014) as Security Consultant.

Azlan Mukhtar

Azlan Mukhtar is a Co-Founder of Eraxen PLT, a cybersecurity startup company, trying to solve malware attack problems. For the past 9 years, he was working for F-Secure, Symantec, and Blue Coat as malware analyst and reseacher fighthing malware. As a reverse engineering enthusiast, he loves sharing knowledge, doing training for the communities(sometimes for free), and occasionaly participate reverse engineering challenges such as Flare-On by FireEye. Previously experience as Malware Analyst at F-Secure, Symantec, Blue Coat.

Muhammad Shahriman Samsudin

Muhammad Shahriman (GPEN) work as a Senior Security Consultant at Scan Associates Berhad. His hacking knowledge and reputation is known when he won the Uitm International Hacking Competition continuously from 2006 until 2008.His exclusive jobs allow him to experiment with all kinds of hacking tools and techniques during the penetration testing. He has dedicated his life to test out the "security state" of most government agencies, law enforcers and numerous financial institution inside and outside of Malaysia.If exploits for certain vulnerability is not available off the shelf, he just write his exploit on his own. He also have passion for teaching and have taught on Network Security inside and outside the country the furthest is (King Abdul Aziz University in Saudi).

He also have actively involves in numerous incident response handling cases particularly related to Digital Forensic issues. He capability to understand the structure of a program or a flow of a network aids him a lot in solving a lot of forensics studies issues. He runs his own blog (http://y0nd13.blogspot.com) where he posted up his tools and research such as "Hunnybunny a remote shellcode Launcher", "Twit2bot a SMS twitter basedbotnet", "Bypassing Antivirus using Stealth Meterpreter".In his spare time, he likes to messed around with Fedora Linux and docodes in Python. He is also an expert in hacking WIMAX/4G Technology.

=Speakers=

Speakers
We have 8 professional speaker will present latest technology related to Cybersecurity

Mohd Akmal Hj Ruslan (BitDefender)

Akmal joined Bitdefender Malaysia since 2014 and within the first year, he has been promoted as Technical Manager cum Trainer. For the past 2 years, he has been conducted over hundreds of training, workshop and seminar mainly for fellow re-sellers. As the team leader cum Technical specialist, he require long working hour with both partners & customers in designing their security network, give advise how best practice besides hands-on in daily operation.

ASP Mohd Riduan Abd Majid (JSJK, PDRM)

ASP Mohd Riduan join PDRM since 2007 as Investigation Officer at Computer Crime/Internet/Intellectual Property, Cyber & Multimedia Crime Investigation Division, JSJK, PDRM Bukit Aman. His involvement on multiple cases of cyber crime including cyber fraud, online scammer and related online crime make him understand on how the crime modus operandis and how it make a threat to Malaysian Citizen especially. His task to enforce, detect, prevent all this crime and assist any case to court. With his vast experience about cyber crime he will share on PDRM perspective on Cyber Crime in Malaysia.

Azril Rahim

Azril Rahim is a passionate cyber security expert with over 13 years of experiance. He is also an advocate for open source software where he also developed codes for computer security as well network and general purpose tools. His interest on computer security focuses on vulnerability assessment, pen-test, computer and network forensics, cyber threats intelligence, PKI and secure communication & network programming. He is also has won several awards from the Malaysian government for his work contribution in computer security. He is also hold several international certifications in computer security. Most of his cyber security work are proven hands on and validated via research papers, written & presented technical presentations, hands on work and also computer codes codings. More information about Azril work on computer security & programming can be obtain at his website at http://azrilrahim.site88.net

Walter Wong

Walter Wong is a technical lead in Gain Secure, a Malaysian-based company. The company specialized for providing secure application development and user experience (UX) consultation services to customers. Walter is a Microsoft MVP for developer security and Microsoft Azure. Research on application development security is Walter's personal interest. He also successfully discovered many websites vulnerabilities including some high traffic websites over the past few years. Walter often speaks at technical conferences such as Visual Studio 2010 Launch, TechEd SEA, Security Symposium, TechNet/MSDN, Tech Insights and more. Hosting the application in the cloud infrastructure does not guaranty your application and data security by default. It’s developer responsibility to ensure the application developed, configured and hosted is secure by default. Come and join Walter in his demo packed rollercoaster ride to understand more about Microsoft Azure security features. If you looking forward for a demo how to break the application hosted in Azure, this is the session you don’t want to miss.

Melvim Lim

Started off as Solutions Specialist, Melvin carries with him over 13 years of security focus experiences working with leading companies like Bluecoat, McAfee, Akamai and Infoblox. With cyber defense always at the the top of his mind, he provided threat briefing, network security assessment workshops for many organisations in ASEAN, reviewed their network security posture for vulnerabilities,. In a few occasions, Melvin was called back by the organization when the security gaps he highlighted were subsequently exploited by the attackers. In Infoblox, Melvin focuses on data leakage over DNS, defense in depth against DNS DDoS and exploits, which are some of the least addressed security gaps in many organizations today.

=Training=

Day 1 - 15 November 2016

 * Reminder: Workshop participants please bring your laptop during the workshop sessions

Day 2 - 16 November 2016

 * Reminder: Workshop participants please bring your laptop during the workshop sessions

***Reminder: Workshop participants please bring your laptop during the workshop sessions
=Conference=

Preliminary Program
The final program will be available before October 2016.

=Sponsors=

Sponsor US!
University Kuala Lumpur

Rapid7

Infoblox

BitDefender

Abyres

MU Dot My

Support Partner

CyberSecurity Malaysia

New in 2016, we are offering exclusive OWASP Day KL 2011 Sponsorships to provide additional benefits and streamline the planning process for our most supportive organizations.

Please [mailto:fazli@owasp.org contact us] directly if you have any related question.

Intented Sponsors:

=Team=


 * [mailto:fazli@owasp.org Contact us]

Members
OWASP Malaysia representative:


 * [mailto:fazli@owasp.org Mohd Fazli Azran (Chapter Leader)]

UniKL representative (SuperGirl Team):


 * [mailto:herny@miit.unikl.edu.my Norsuhaili Seid (Advisor)]
 * [mailto:norhaizaya@miit.unikl.edu.my Norhaiza Ya Abdullah (Project Leader)]
 * [mailto:wanhazimah@miit.unikl.edu.my Wan Hazimah Wan Ismail (Deputy Project Leader/ Secretary 1)]
 * [mailto:dalilah@miit.unikl.edu.my Amalia @ Amelia Mukhlas (Secretary 2/Seminar Members)]
 * [mailto:dalilah@miit.unikl.edu.my Mardiana Mahari (Training Team Leader)]
 * [mailto:dalilah@miit.unikl.edu.my Dalilah Abdullah (Registration Team Leader)]
 * [mailto:herny@miit.unikl.edu.my Herny Ramadhani Mohd Husni (Seminar Team Leader)]
 * [mailto:sarirah@miit.unikl.edu.my Husna Sarirah Husin (Registration Members)]
 * [mailto:sarirah@miit.unikl.edu.my Siti Salwa Hasbullah (Registration Members)]
 * [mailto:sarirah@miit.unikl.edu.my Arunna Azariah (Seminar Members)]

OWASP Volunteer Team:

AJK Student:

REGISTRATION TEAM
 * Azeem Salehuddin bin Isma Zaki (LEADER)
 * Nur Zuhairah bt Abdul Halim
 * Nor Syafiqah Aqilah bt Che Malek
 * Nor Adani bt Kamal Mohamad Nasir
 * Nabila Syuhada bt Mat Samsul

SEMINAR TEAM
 * Mohammad Izrin bin Abdul Rashid (LEADER)
 * Nur Adilla Shahida bt Salleh
 * Fitri Nur Fathihah bt Abdul Sani
 * Ariff Affandi bin Azman
 * Nik Hazhirah bt Nik Badrul Ehsan
 * Muhammad Na'im Zikri bin Mohd Zamli
 * Hanan Fatihah bt Chek Zainon

TRAINING TEAM
 * Adham bin Ramlee (LEADER)
 * Muhammad Ansaruddin bin Nik Mohd Tahir
 * Muhammad Zul Husnain bin Abd Samad
 * Muhammad Fakhrulizzuan bin Harun
 * Che Nur Fatihah bt Che Azmi
 * Amirul Hanafi bin Abdullah

OTHERS
 * Muhd Sham Ashraff bin Maskan (LEADER)
 * Hazirah Syahirah bt Hanafi
 * Fitri Nur Fathihah bt Abdul Sani
 * Nuriah Nasihah bt Kamarulzaman

=Expenses=

Registration Fee
If you are neither an OWASP member nor an OWASP Malaysia chapter member, please feel free to join us!

It is special discount for all OWASP Paid members and all OWASP Malaysia Paid chapter members.

Please ensure that the information given are correct before submission. Our staff will send confirmation email and payment MUST be made within 5 working days. Method of payment: A) cash deposit. B) LO &amp; PO for government only. C) cheque deposit . D) online money transfer.

ACCOUNT DETAIL: Company : Universiti Teknikal Mara Sdn Bhd Bank Name : CIMB Bank BHD Account Name : AKAUN PUNGUTAN UNIKL IIM  Account Number : 80-80026465-3 Bank Swift Code : CIBBMYKL

For more inquiries on payment, please contact: [mailto:adminowasp@unikl.edu.my Admin OWASP DAY KL 2016] No. Telephone : +603-21754135 / +60321754349 / +60321754309 / +60321754362 / +60321754364 No. Fax : +603-21754441

Official OWASP Day KL 2016: http://owasp.unikl.edu.my

Accommodation
Please check the local hotel website for detail information. For more details please check at logistic tab.

=Logistics=

Venue
Universiti Kuala Lumpur

website: http://www.unikl.edu.my

Hotel
For the Hotel suggested near at the venue area:


 * Sheraton Imperial
 * Regency
 * Concorde
 * Shangri-La
 * Renaissance

Travel
How to obtain a visa for the event


 * Invitation letter will be sent out for overseas attendees after registration.
 * For detailed information on obtaining a business visa for this event, please refer to Malaysia embassy

Parking
UniKL have limited parking. All participant can parking at behind UniKL. It a Shopping Complex "Quill City Shopping Mall"