Des Moines

Local News
Everyone is welcome to join us at our chapter meetings.

Follow us on Twitter! https://www.twitter.com/owaspDSM

Tuesday September 23, 2014
Location: Dice Holdings, Inc. Urbandale office Sponsored by MidAmerican Energy ZAP (Zed Attack Proxy) Workshop Remote training session by Russ McRee on the use of ZAP, followed by Q&A and a workshop session with local targets. Bring a laptop! Russ is Director of Threat Intelligence & Engineering at Microsoft, a handler at the Internet Storm Center, and author of the toolsmith column for the ISSA Journal.

Tuesday September 23, 2014
Location: Dice Holdings, Inc. Urbandale office Sponsored by MidAmerican Energy ZAP (Zed Attack Proxy) Workshop Remote training session by Russ McRee on the use of ZAP, followed by Q&A and a workshop session with local targets. Bring a laptop! Russ is Director of Threat Intelligence & Engineering at Microsoft, a handler at the Internet Storm Center, and author of the toolsmith column for the ISSA Journal.

Wed November 13, 2013
Location: Meredith Corporation Sponsored by Riverbed Technology - Stingray BU Presenter: Matthew Sullivan, "Advanced Client-Side Protections" Web programmers often cover the web security basics, like implementing anti-XSS and anti-CSRF controls, but often remain unaware of new client-side security directives, like Content Security Policy, HTTP Strict Transport Security, and X-Frame-Origin. This presentation will describe what these three controls do to protect end-users, and what technical challenges an organization might face if they wish to implement these controls in their web applications. Matthew is a Security Vulnerability Analyst for WebFilings

Presenter: Jason Braddy, "Self-Defending Web Infrastructure" While it seems clear that security can't effectively be "bolted on" to insecure applications, infrastructure elements still have a role to play in a comprehensive strategy. Thoughtful use of technologies that may already be in place can provide a number of options for improving detection, protection, and response capabilities. Jason is a Network Engineer for Dice Holdings, Inc.

Wed August 14, 2013 - OWASP Des Moines Inaugural Meeting
Location: Dice Holdings, Inc. Sponsored by White Hat Security Presenter: Ethan Wilder, "CSRF: Inside the Magic" Ethan Wilder is a long time computer security enthusiast with a special interest in web application security. He's currently pursuing a masters degree in Information Assurance from Iowa State University by night and working as a software developer at Farmers Mutual Hail by day.