Edmonton

Local News
Our chapter's next meeting will be Dec 5. Yegor Jbanov will continue his overview of OWASP's WebGoat project. WebGoat is a deliberately insecure J2EE web application maintained by OWASP designed to teach web application security lessons. In each lesson, users must demonstrate their understanding of a security issue by exploiting a real vulnerability in the WebGoat application. For example, in one of the lessons the user must use SQL injection to steal fake credit card numbers. The application is a realistic teaching environment, providing users with hints and code to further explain the lesson.

Yegor started his presentation at our October meeting. There was good discussion around the practical matters of how the security exploits work. Given the level of interest Yegor offered to present more exploits in the December meeting (Cross site scripting attacks and SQL Injection in particular!). Note: a knowledge of Java was not required to follow along.

The meeting will take place Tuesday, December 5, 2006 at 6:00 PM in the Telus Plaza North Tower. Please meet us in the building's lobby before 6:00 so that we can escort you to the boardroom. The meeting will be over by 7:15.

Here is a map