Category:OWASP Video

Welcome to the OWASP Video Collection
OWASP attempts to make videos of presentations made by our members and at our conferences concerning application security whenever possible. The slides for most of these presentations are available, linked to the conference agendas (please link them if possible!).

Some of the videos below got a little mangled in the conversion process. So some of the talks run together. For example the first part of Dinis' .Net Tools video is appended to the end of Jeff's Guide talk. We're working on it.

Videos
To see videos from the OWASP NYC APPSEC 2008 event (50+ speakers) see : Click Here


 * OWASP SnowFROC from Denver, CO 2009

2009 Minneapolis-St.Paul (MSP) OWASP Chapter Meeting presentations:


 * OWASP_MSP_Cassio_Goldschmidt_Tracking_the_Progress_of_an_SDL_Program_Lessons_from_the_Gym_MP4
 * OWASP Cassio Goldschmidt - Tracking the Progress of an SDL Program: Lessons from the Gym (55 minutes) (MP4, 138 MB...please right click and save). OWASP (MSP) - June 29, 2009


 * OWASP_MSP_Cassio_Goldschmidt_Tracking_the_Progress_of_an_SDL_Program_Lessons_from_the_Gym_Slidecast
 * OWASP Cassio Goldschmidt - Tracking the Progress of an SDL Program: Lessons from the Gym (55 minutes) (Slidecast). OWASP (MSP) - June 29, 2009


 * OWASP_MSP_Cassio_Goldschmidt_Tracking_the_Progress_of_an_SDL_Program_Lessons_from_the_Gym_MP3
 * OWASP Cassio Goldschmidt - Tracking the Progress of an SDL Program: Lessons from the Gym (55 minutes) (MP3). OWASP (MSP) - June 29, 2009


 * OWASP_MSP_Cassio_Goldschmidt_Tracking_the_Progress_of_an_SDL_Program_Lessons_from_the_Gym_Slides
 * OWASP Cassio Goldschmidt - Tracking the Progress of an SDL Program: Lessons from the Gym (Slides .PPTX). OWASP (MSP) - June 29, 2009


 * OWASP_MSP_Gunnar_Peterson_OWASP_Top_Ten_Web_Services_MP4
 * OWASP Gunnar Peterson - OWASP Top Ten Web Services (1 hour, 27 minutes) (MP4, 220 MB...please right click and save). OWASP (MSP) - April 27, 2009


 * OWASP_MSP_Dan_Cornell_Vulnerability_Management_in_an_Application_Security_World
 * OWASP Dan Cornell - Vulnerability Management in an Application Security World (1 hour, 52 minutes). OWASP (MSP) - March 16, 2009


 * OWASP_MSP_Dan_Cornell_Vulnerability_Management_in_an_Application_Security_World_Slides
 * OWASP Dan Cornell - Vulnerability Management in an Application Security World (Slides .PDF). OWASP (MSP) - March 16, 2009


 * OWASP_MSP_Rick_Ensenbach_Proactive_Lifecycle_Security_Management_1_of_2
 * OWASP Rick Ensenbach - Proactive Lifecycle Security Management (1 of 2 - 35 minutes). OWASP (MSP) - February 16, 2009


 * OWASP_MSP_Rick_Ensenbach_Proactive_Lifecycle_Security_Management_2_of_2
 * OWASP Rick Ensenbach - Proactive Lifecycle Security Management (2 of 2 - 34 minutes). OWASP (MSP) - February 16, 2009


 * OWASP_MSP_Rick_Ensenbach_Proactive_Lifecycle_Security_Management_Slides
 * OWASP Rick Ensenbach - Proactive Lifecycle Security Management (Slides .PPT). OWASP (MSP) - February 16, 2009


 * OWASP_MSP_Rick_Ensenbach_Proactive_Lifecycle_Security_Management_Handout_Service_System_Security_Plan_template
 * OWASP Rick Ensenbach - Proactive Lifecycle Security Management (Handout: Service/System Security Plan template .DOC). OWASP (MSP) - February 16, 2009

2008 Minneapolis-St.Paul (MSP) OWASP Chapter Meeting and Mini-Conference presentations:


 * OWASP MSP October 2008 Mini-Conference: Arshan Dabirsiaghi - ISWG. OWASP (MSP)
 * Arshan Dabirsiaghi, founder of the OWASP Intrinsic Security Working Group (OWASP ISWG), ISWG at the OWASP & FLOSS Application Security Mini-Conference - Oct 21, 2008


 * OWASP_MSP_Jeremiah_Grossman_Get_Rich_or_Die_Trying_Partial_Video_38_Minutes | OWASP_MSP_Jeremiah_Grossman_Get_Rich_or_Die_Trying_Slides_Full
 * Jeremiah Grossman - Get Rich or Die Trying - Making Money on The Web, The Black Hat Way - OWASP (MSP) - 9 September 2008 (Partial Video - 38 Minutes) | Slides (Full)


 * OWASP_MSP_Gunnar_Peterson_Breaking_Web_Services_1_of_2
 * OWASP Gunnar Peterson - Breaking Web Services (1 of 2 - original aspect ratio maintained). OWASP (MSP) - July 7, 2008


 * OWASP_MSP_Gunnar_Peterson_Breaking_Web_Services_2_of_2
 * OWASP Gunnar Peterson - Breaking Web Services (2 of 2 - aspect ratio distorted). OWASP (MSP) - July 7, 2008


 * OWASP_MSP_Gunnar_Peterson_Breaking_Web_Services_Handout
 * OWASP Gunnar Peterson - Preaking Web Services (Handout). OWASP (MSP) - July 7, 2008


 * OWASP_MSP_Tony_Stieber_How_NOT_to_Implement_Encryption_for_the_OWASP_Top_10
 * OWASP Tony Stieber - How NOT to Implement Encryption for the OWASP Top 10. OWASP (MSP) - Jun 16, 2008


 * OWASP_MSP_Bruce_Schneier_Economic_trends_of_information_security
 * OWASP Bruce Schneier - 10 Economic Trends of Information Security. OWASP (MSP)- Jan 14, 2008


 * OWASP_MSP_Robert_Hansen_RSnake_Logic_Attacks_inefficiencies_of_robotic_detection
 * OWASP Robert Hansen aka RSnake - Logic Attacks, inefficiencies of Robotic detection. OWASP (MSP) - Feb 11th 2008

From Black Hat 2006:


 * Dinis Cruz @ BlackHat 2006 with FSTV
 * Dinis Cruz, leader of the OWASP.NET project joins us to talk about .NET, web security tools, the future of OWASP, and Open Source Software. OWASP - 30 min - Aug 30, 2006

From the 2nd U.S. OWASP Conference held Oct 11-12, 2005 - Day 1:


 * OWASP_Intro_DaveWichers_Key_JoeJarzombek_RonRoss.mp4
 * OWASP Intro: Dave Wichers - Key Note Day 1: Joe Jarzombek - Dir. of Software Assurance - DHS - Software Assurance: Considerations for Advancing a National Strategy to Secure Cyberspace & Ron Ross -FISMA Project Lead - NIST - Status of the Federal Information Security Management Act (FISMA) Project. OWASP - 2 hr 7 min - Oct 11, 2005


 * OWASP_JackDanahy_The_Business_Case_for_Software_Security_Assurance.mp4
 * OWASP Jack Danahy - The Business Case for Software Security Assurance. OWASP - 1 hr 2 min - Oct 11, 2005


 * OWASP_ArianEvans_Tools_SurveyProject.mp4
 * OWASP Arian Evans - The OWASP Tools Survey Project. OWASP - 1 hr 18 min - Oct 11, 2005


 * OWASP_DinizCruz_Rooting_the_CLR.mp4
 * OWASP Diniz Cruz - Rooting the CLR. OWASP - 1 hr 22 min - Oct 11, 2005


 * OWASP_PaulBlack_RickKuhn.mp4
 * OWASP Paul Black - NIST - Developing a Reference Dataset & Rick Kuhn - NIST - Software Fault Interactions. OWASP - 1 hr 9 min - Oct 11, 2005


 * OWASP_AlexSmolen_Application_Logic_Defense.mp4
 * OWASP Alex Smolen - Application Logic Defense. OWASP - 36 min - Oct 11, 2005


 * OWASP_DanielCuthbert_Evolution_WebAppPenTest.mp4
 * OWASP Daniel Cuthbert - OWASP Testing Guide Lead - The Evolution Web App Pen Testing. OWASP - 1 hr 11 min - Oct 11, 2005

The 2nd U.S. OWASP Conference Day 2:


 * OWASP_IraWinkler_Secrets_of_Superspies.mp4
 * OWASP Ira Winkler - Keynote Day 2: Secrets of Superspies & Jeremy Poteet - In the Line of Fire: Defending Highly Visible Targets. OWASP - 2 hr 2 min - Oct 12, 2005


 * OWASP_JeffWilliams_OWASP_Guide_and_Membership.mp4
 * OWASP Jeff Williams - OWASP Development Guide and OWASP Membership Plan. OWASP - 1 hr 12 min - Oct 12, 2005


 * OWASP_DinizCruz_DotNet_Tools_Project.mp4
 * OWASP Diniz Cruz - The .Net Tools Project. OWASP - 1 hr 15 min - Oct 12, 2005


 * OWASP_MattFisher_WormsNowTargetingWebApps.mp4
 * OWASP Matt Fisher - Worms Now Targeting Web Applications. OWASP - 49 min - Oct 12, 2005


 * OWASP_RoganDawes_AdvancedFeaturesofWebScarab.mp4
 * OWASP Rogan Dawes - Advanced Features of OWASP WebScarab. OWASP - 1 hr 24 min - Oct 12, 2005


 * OWASP_JohnSteven_Building_a_Scalable_Software_Security_Practice.mp4
 * OWASP John Steven - Building a Scalable Software Security Practice. OWASP - 1 hr 19 min - Oct 12, 2005


 * OWASP_GunnerPeterson_IntegratingIdentityServicesintoWebApps.mp4
 * OWASP Gunnar Peterson - Integrating Identity Services into Web Apps. OWASP - 35 min - Oct 12, 2005