OWASP Portland 2016 Training Day

This year the Portland OWASP chapter is hosting a training day. This will be an excellent opportunity for students to receive quality information security and application security training for next to nothing. It will also be a great chance to network with the local infosec community.

=Courses= Four courses will be offered in 2 separate tracks. A full schedule has yet to be determined, but the courses offered will likely be as follows:

Applied Physical Attacks on Embedded Systems, Introductory Version
Instructor: Joe Fitzpatrick

This workshop introduces several different relatively accessible interfaces on embedded systems. Attendees will get hands-on experience with UART, SPI, and JTAG interfaces on a MIPS-based wifi router. After a brief architectural overview of each interface, hands-on labs will guide through the process understanding, observing, interacting with, and exploiting the interface to potentially access a root shell on the target.

Introduction to Injection Vulnerabilities
Instructor: Timothy D. Morgan

TODO

Fuzzing: Introduction & Practice
Instructor: Adam Russell

The training starts with the theory of fuzzing. There is no prior knowledge is assumed. Each fuzzing topic and technique utilizes interesting case studies and scenarios to highlight the use-cases of fuzzing and their practicality. The training utilizes practical sessions (e.g. fuzzing image formats, web application data flow, etc) to gain hands-on experience with fuzzing tools. This training will equip participants with the necessary skills and knowledge to conduct basic fuzzing of products.

TODO: Auditing & Critical Controls
Instructor: Brian Ventura

TODO

=Details= The training day will be held on Wednesday, November 2 in PSU's Smith Memorial Student Union Building at 1825 SW Broadway, Portland, OR 97201. Later in the evening, a social mixer will also be held at TODO.

=How to Register= TODO

=Sponsors= TODO