OWASP Education Presentation

This page provide a commented overview of the OWASP presentations available. Please use the last line of the tables as template. Presentions can be tracked through: Everybody is encouraged to link the presentations and add their findings on this page ! There are currently hundreds of presentations all over the OWASP web site. If you search google with “site:owasp.org filetype:ppt” there are 166 hits. “site:owasp.org filetype:pdf” returns 76. Feel free to “mine” them and add them to the overview.
 * the OWASP Presentations Category
 * Past OWASP Conference agenda's
 * From the chapter pages

OWASP Education Presentations
,

Chapter Presentations
{|class="wikitable sortable" style="text-align: top;" border="1" cellpadding="2" !width="30%" |Title !width="30%" |Comment !width="10%" |Level !width="10%" |Month (Mon-yyyy) !width="10%" |Chapter
 * + Chapter Presentations


 * -valign="top"
 * Common Application Flaws (Brett Moore) ||OWASP New Zealand chapter presentation on Common Application Flaws|| Novice/Intermediate ||November 2008 || New Zealand
 * -valign="top"
 * Time Based SQL Injections (Muhaimin Dzulfakar) ||OWASP New Zealand chapter presentation on Time Based SQL Injections|| Intermediate ||September 2008 || New Zealand
 * -valign="top"
 * Browser Security (Roberto Suggi Liverani) ||OWASP New Zealand chapter presentation on Browser Security|| Intermediate ||September 2008 || New Zealand
 * -valign="top"
 * 7/7/2008 SQL Injection (Columbus, OH) || SQL Injection Presentation given at the Columbus, OH OWASP Chapter Meeting. Powerpoint, derby DB, and applicable java code. || Novice / Intermediate || July 2008 || Columbus
 * -valign="top"
 * Detecting Web Application Vulnerabilities Using Open Source Means (Konstantinos Papapanagiotou) ||OWASP Greek Chapter presentation given at the Open Source Software (FLOSS) Conference in Athens|| Novice ||May 2008 || Greece
 * -valign="top"
 * Hacking The World With Flash (Paul Craig) ||OWASP New Zealand chapter presentation on Flash security|| Intermediate ||April 2008 || New Zealand
 * -valign="top"
 * Web Spam Techniques (Roberto Suggi Liverani) ||OWASP New Zealand chapter presentation on Web Spam Techniques|| Intermediate ||April 2008 || New Zealand
 * -valign="top"
 * Xpath Injection Overview (Roberto Suggi Liverani) ||OWASP New Zealand chapter presentation on Xpath Injection|| Intermediate ||February 2008 || New Zealand
 * -valign="top"
 * Dependability for Java Mobile Code (Pierre Parrend) ||OWASP Swiss chapter presentation on Mobile Java Security || Expert ||July 2007 || Switzerland
 * -valign="top"
 * Trust, Security and Usability (Roger Carhuatocto) in Spanish||OWASP Spain chapter meeting (July'07) || Intermediate ||July 2007 || Spain
 * -valign="top"
 * Tratamiento seguro de datos en aplicaciones in Spanish||OWASP Spain chapter meeting (July'07) || Intermediate ||July 2007 || Spain
 * -valign="top"
 * Ataques DoS en aplicaciones Web (Jaime Blasco Bermejo) in Spanish||OWASP Spain chapter meeting (July'07) || Intermediate ||July 2007 || Spain
 * -valign="top"
 * Seguridad en entornos financierosPedro (Pedro Sánchez) in Spanish||OWASP Spain chapter meeting (July'07) || Intermediate ||July 2007 || Spain
 * -valign="top"
 * Brian Chess from Fortify shared what's going on with the Java Open Source review project at the June NoVA OWASP meeting || Java Open Review || Intermediate ||June 2007 || Virginia (Northern Virginia)
 * -valign="top"
 * Brian Chess from Fortify, presentation to NoVA OWASP chapter in June 2007. || Bytecode injection || Expert ||June 2007 || Virginia (Northern Virginia)
 * -valign="top"
 * Security at the VMM Layer by Ted Winograd || Security at the VMM Layer || Expert ||June 2007 || Virginia (Northern Virginia)
 * -valign="top"
 * Evaluating and Tuning Web Application Firewalls (Barry Archer) ||Presentation given at Kansas City June 2007 chapter meeting|| Intermediate ||June 2007 || Kansas City
 * -valign="top"
 * Microsoft Security Development Lifecycle for IT (Rob Labbé) ||Presentation by Rob Labbe at Ottawa OWASP Chapter|| Novice ||May 2007|| Ottawa
 * -valign="top"
 * Application Denial of Service (Shaayy Cheen) ||Is it Really That Easy? Presentation given at the Israel Mini Conference in May 2007|| Intermediate ||May 2007 || Israel
 * -valign="top"
 * Fuzzing in Microsoft and FuzzGuru framework (John Neystadt) ||Presentation given at the Israel Mini Conference in May 2007|| Intermediate ||May 2007 || Israel
 * -valign="top"
 * Application Security, not just development (David Lewis) ||Presentation given at the Israel Mini Conference in May 2007|| Intermediate ||May 2007 || Israel
 * -valign="top"
 * Overtaking Google Desktop, Leveraging XSS to Raise Havoc (Yair Amit) ||Presentation given at the Israel Mini Conference in May 2007|| Intermediate ||May 2007 || Israel
 * -valign="top"
 * Unregister Attack in SIP (Anat Bremler-Barr, Ronit Halachmi-Bekel and Jussi Kangasharju) ||Presentation given at the Israel Mini Conference in May 2007|| Intermediate ||May 2007 || Israel
 * -valign="top"
 * Positive Security Model for Web Applications, Challenges and Promise (Ofer Shezaf) ||Presentation given at the Israel Mini Conference in May 2007|| Intermediate ||May 2007 || Israel
 * -valign="top"
 * .NET Reverse Engineering (Erez Metula) ||Presentation given at the Israel Mini Conference in May 2007|| Expert ||May 2007 || Israel
 * -valign="top"
 * OWASP introduction (Ofer Shezaf) ||2nd OWASP IL mini conference at the Interdisciplinary Center (IDC) Herzliya|| Intermediate ||May 2007 || Israel
 * -valign="top"
 * Update on Internet Attack Statistics for Belgium in 2006 by Hilar Leoste (Zone-H) || Update on Internet Attack Statistics for Belgium in 2006 || Novice ||May 2007 || Belgium
 * -valign="top"
 * Securing Web Services using XML Security Gateways by Tim Bond || Securing Web Services using XML Security Gateways || Intermediate ||May 2007 || Virginia (Northern Virginia)
 * -valign="top"
 * Software Assurance in the Acquisition Process by Stan Wisseman || Software Assurance in the Acquisition Process || Intermediate ||May 2007 || Virginia (Northern Virginia)
 * -valign="top"
 * Legal Aspects of (Web) Application Security by Jos Dumortier || Legal Aspects of (Web) Application Security || Intermediate ||May 2007 || Belgium
 * -valign="top"
 * AppSec Research (University Leuven Belgium) || Formal absence of implementation bugs in web applications: a case study on indirect data sharing by Lieven Desmet || Expert ||May 2007 || Belgium
 * -valign="top"
 * A Scanner Sparkly || A Scanner Sparkly, taken from the Phoenix OWASP presentations on Application Security Tools, May 2007 || Intermediate ||May 2007 || Phoenix
 * -valign="top"
 * Grey Box Assessment Lessons Learned || "Grey Box Assessment Lessons Learned", taken from the Phoenix OWASP presentations, Application Security Tools, May 2007 || Intermediate ||May 2007 || Phoenix
 * -valign="top"
 * OWASP Update and OWASP BeLux Board Presentation (Seba) || OWASP Update and OWASP BeLux Board Presentation || Novice||May 2007 || Belgium
 * -valign="top"
 * Metics- What can we measure (Zed Abbadi) ||19 April NoVa chapter meeting presentation on Security Metrics || Novice ||April 2007 || Virginia (Northern Virginia)
 * -valign="top"
 * Web Services Hacking and Hardening (Adam Vincent) ||3/8/07 NoVA chapter meeting, Adam Vincent from Layer7  || Expert ||March 2007 || Virginia (Northern Virginia)
 * -valign="top"
 * OWASP Update (Seba) || OWASP Update || Novice||Jan 2007 || Belgium
 * -valign="top"
 * XSS Worms (Sven Vetsch) || XSS Worms || Intermediate ||Feb 2007 || Switzerland
 * -valign="top"
 * OWASP Update (Seba) || OWASP Update || Novice||Jan 2007 || Belgium
 * -valign="top"
 * WebGoat and Pantera presentation (Philippe Bogaerts) || WebGoat and Pantera presentation  || Novice || Jan 2007 || Belgium
 * -valign="top"
 * Security implications of AOP for secure software (Bart De Win) || Security implications of AOP for secure software || Expert || Jan 2007 || Belgium
 * -valign="top"
 * testing for common security flaws (David Byrne) || testing for common security flaws || Intermediate || Nov 2006 || Denver
 * -valign="top"
 * 40-ish slides on analyzing threats (Olli) || Analyzing Threats || Novice || Dec 2006 || Helsinki
 * -valign="top"
 * Attacking the Application (Dave Ferguson) || Vulnerabilities, attacks and coding suggestions || Intermediate || Dec 2006 || Kansas City
 * -valign="top"
 * Ajax Security Concerns (Rohini Sulatycki) || Ajax Security Concerns || Intermediate ||Dec 2006 || Kansas City
 * -valign="top"
 * Anatomy of 2 Web Application Testing (Matteo Meucci) || Anatomy of 2 Web Application Testing || Intermediate || Mar 2006 || Italy


 * -valign="top"


 * Testing From the Cloud: Is the Sky Falling? || WTE Cloud-based Testing || Intermediate || Feb 2012 || Austin
 * -valign="top"