Long Island

Chapter Meetings
Scroll down to see the upcoming Long Island OWASP events

RSVP REQUESTED http://www.owasp.org/images/7/7f/Register.gif

Date: 10/24/2009 Time: 11:00-14:00 Place: Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 MAP Directions: Enter from the service road on the East Bound side of Sunrise Hwy. Turn right after passing the security gate. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all attendees do not park in any spot marked as RESERVED. Once you enter building 200, pass through security, turn right and head down the hall, pass through the first set of doors. Our conference room is your first right. There will be signs posted along this path directing attendees to the room. Agenda:
 * 11-00 - Opening Remarks & Welcome to OWASP Foundation
 * --'''Helen Gao, OWASP LI Board


 * 11-20 - Attacking VoIP With The OWASP Top 10
 * VoIP systems allow for cheap and easy telephony communication. Current VoIP implimentations may be more vulnerable then you believe.  How could an attacker 0wn your PBX with the OWASP Top 10?  Topics will include Vulnerability Research, Protocol Fuzzing, VoIP and the OWASP Top 10.  Proof of concept 0day vectors will be discovered and exploited.  This is going to be fun!
 * --'''Blake Cornell Security Consultant Net2S/BT-INS, OWASP NY/NJ/LI Board Member


 * 12-10 - Lunch


 * 12-20 - Network Version Control
 * Leveraging Python, Nmap, Ndiff and Subversion to create baselines of your hosts and services. Together, these form a basic foundation to detect unapproved changes and alert accordingly.
 * --'''Ryan Behan, OWASP LI Board Member


 * 13-20 - Passive Web Application Analysis
 * Discover ways to leverage the tools you currently use to find potential vulnerabilities in web applications as early as during an initial application walk through. This talk will cover the current state of passive web application analysis as well as discuss how to set up a framework for your own testing needs.
 * --'''Phil Ames, Security Consultant


 * All Day Event - Capture the Flag
 * There will be a day long CTF event. Test your skills, learn new exploitation techniques, hack in a team, get the highest score, win prizes?  Hack the day away with your friends and peers.
 * --'''Dan Guido, OWASP NY/NJ Board Member

Rides will be provided to the Blue Point Brewery. When you are done with enjoying the best brews on the East Coast, the train station is only a short walk from the Brewery.
 * AFTER EVENT NETWORKING WILL BE HELD AT '''THE BLUE POINT BREWERY!!

Come prepared for a day of networking with your industry peers. We invite all attendees to food and libations after the meeting at a local venue TBA. If you join our mailing list, then you will receive details of the meeting as soon as they are finalized. To be a co-sponsor for this or a future meeting consider annual chapter sponsorship If you can host an upcoming meeting please contact a LI board member.

Chapter Leaders/Contacts
 
 * [mailto:heleng@owasp.org Helen Gao, CISSP]
 * [mailto:ryan.behan@owasp.org Ryan C Behan]
 * [mailto:blake@owasp.org Blake Cornell] 212-202-6704