Welcome to the Jakarta chapter homepage. The chapter leadership includes: Chapter Leader (see Chapter Leadership for full listing of Indonesia Chapter leadership team).
Click here to join the local chapter mailing list.
OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.
Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member?
Bhinneka Tunggal Ika
united we stand divided we fall
OWASP Indonesia now officially has meetup in jakarta and yogyakarta. Yogyakarta is very special for owasp indonesia. We are non-profit organization. We are pleasure and welcome to all Indonesian to join us and share the knowledge, skill, idea and related to make OWASP Jakarta Project are benefit to everybody. OWASP Jakarta Project as well are the pioneer project for Web Security Application. Any private sector want to contribute and sponsor are welcome.
Want to talk at Our Chapter please email us :email@example.com
Please Donate Our Chapter
Stay in contact:
Join our low traffic mailing list for event information
[ http://lists.owasp.org/mailman/listinfo/owasp-jakarta join our milis]
For all new members and existing member please free to contribute to OWASP Jakarta Chapter and if you are commitment to help OWASP Jakarta please subscribe OWASP Membership for individual. For Corporate sponsor OWASP Jakarta please to contact OWASP Admin. We still open Recruitment to join with us. if you interested feel free for contact me.
We are welcome to join our conversation. If any query don't hesitate to contact OWASP Admin. Everyone is welcome to join us at our chapter meetings.
NOTE: OWASP now promote for who want to become Official Members for Jakarta Chapter. You can get special rate and discount and get email @owasp.org with 25GB space. Please register at here as individual(Memberships) and to see the example how to (REGISTER) OWASP Memberships
Chapter MeetingsVisit our group on meetup.com
- Sep 27, 2018 (19:00): OWASP Jakarta Night Q3 2018Graha astel, faspay office, Graha Astel Jl. Pintu Air Raya No. 2A Jakarta Pusat · Central Jakarta, Software yang tidak aman telah mengancam infrastruktur keuangan, kesehatan, pertahanan, energi, dan infrastruktur penting lainnya. Dengan semakin kompleks dan terhubungnya infrastruktur digital kita, kesulitan mencapai keamanan aplikasi meningkat secara eksponensial. Open Web Application Security Project (OWASP) yang merupakan komunitas terbuka yang didedikasikan untuk memungkinkan organisasi meng (read more)
- Aug 7, 2018 (19:00): OWASP Jakarta Night #2Marque at Cyber 2 Tower, Jl. H. R. Rasuna Said Blok X-5 Cyber 2 Tower 17th Floor, RT.7/RW.2 · Jakarta Selatan, Event Program:18.00p.m - 19.00p.m - Arrival Participant & Registration19:00 pm – 19:15 p.m - Speech by OWASP Indonesia Chapter Leader , Ade Yoseman Putra19.15p.m - 19.30 p.m - Speech by OWASP Indonesia Co Chapter Leader by Suman Sourav19.30 p.m - 20.30 p.m - Speech including Q & A by David Holmes20.30 p.m - 21.30 p.m - Speech including Q & A by Harley Davidson Karel21:30 p.m - 22.00 (read more)
Blackhat Europe 2018, 3th-6th december 2018
OWASP Booth -HITB Singapore CommSec Exhibition 2018, Lead by Suman Sourav 30th August and 31st August 2018
Past Security Events
Taiwan International Information Security Organization Summit 2018 OWASP TAIWAN SUMMIT 2018 Taipei, Taiwan
Open Security Summit 2018 @Remotely, Open Security Summit 2018 London, UK.
OWASP Sendai Chapter Meeting 2018, Sendai Japan 27 th april 2018
Blackhat Asia Singapore 2018 Bussiness Hall "TRENDS AND STRATEGIES FOR SECURING THE INTERNET OF THINGS" 23 th March 2018
Blackhat Asia Singapore 2018 Arsenal @Arsenal, Blackhat Asia Singapore 2018
Codebali International Cyber Security Conference and Exhibitions 2017, FIRST-TC, 26-29 th September 2017
National Seminar of Research & Development Id-SIRTII/CC 2017, Hotel Grand Tjokro Bandung West Java Indonesia Theme : Tren IOT & Mobile System 27 July 2017
Taiwan International Information Security Organization Summit 2017 OWASP DAY TAIWAN 2017 11 - 13 July 2017
Blackhat Asia Singapore 2017 @Arsenal, Blackhat Asia Singapore 2017 30 - 31 March 2017
OWASP DAY KL 2016 Malaysia OWASPKL2016 15 - 17 November 2016
On December 2016, Ade Yoseman reactive OWASP Indonesia
OWASP Juice Shop UI v2.21.1 available in Indonesian language! 🇮🇩 (Preview: [OWASP Juice Shop]) download https://github.com/bkimminich/juice-shop/releases/tag/v2.21.1
Project On Progress
Here the lists Project have been submit by OWASP JAKARTA Chapter Projects Members
OWASP Jakarta Projects
Help us to make application security visible and become a supporter of the OWASP or our Chapter in Indonesia. All information about becoming a member/sponsor can be found here.
If your company is interested in supporting us directly, please contact Ade Yoseman Putra to talk about the following sponsoring possibilities.
Single Meeting Supporter
Organization Supporters (allocating 40% of your annual donation to our Chapter)
Local Chapter Supporter
The following is the list of organisations who have generously provided us with space for OWASP Indonesia chapter meetings:
We Are Currently seeking venue and sponsorship for owasp monthly meetup. if your company interested support us please email us : firstname.lastname@example.org
Want to talk at Our Chapter please email us :email@example.com
OWASP JAKARTA NIGHT Q3 2018
Sesi ini akan mendiskusikan tentang :
Web Application by Design with OWASP
1. First Step to Web Application ISO27001 vs PCIDSS VS OWASP TOP 10 by Elias (Head of System Development Faspay)
2. Building a tailored AppSec Program using OpenSAMM by Suman Sourav & Tuyen Do
Abstract: Building a tailored AppSec Program using OpenSAMM
The Software Assurance Maturity Model (SAMM) is an open framework to help organizations formulate and implement a strategy for software security that is tailored to the specific risks facing the organization. The resources provided by SAMM will aid in:
• Evaluating an organization’s existing software security practices
• Building a balanced software security program in well-defined iterations
• Demonstrating concrete improvements to a security assurance program
• Defining and measuring security-related activities within an organization
This session is focused on the practical implementation of an AppSec Program based on your organization needs and business risk appetite. Most of the AppSec program fails because of lack of programmatic approach and strategic rollout. Participants will learn about an importance of a Security Program Management, how it solves people, process and technologies challenges in implementing an AppSec program, driving results and metrics relevant to the different stakeholders.
Suman is a Certified Secure Software Lifecycle Professional (CSSLP) having more than a decade experience in designing secure-SDLC programs and is passionate about integrating security into the development lifecycle. He is skilled beyond existing static analysis tools and code review techniques and shaping the way the industry secures code in a Continuous Deployment world. He has worked with various financial and non-financial institutions to implement software security life-cycle and has strong experience of creating an organizational framework to break silos security culture in the organization and builds a unified approach to deal with the root cause of software security problems. Currently he is working with Vantage Point Security as a Regional Program Director for Vantage Point Security and helping clients in SEA region to implement application security program.
Tuyen is an experienced Security Programme Manager, highly strategic, analytical and performance driven professional with 7+ years of blended experience in managing strategic programs /initiatives within banking & financial, and information technology sectors. Dynamic, versatile, hands-on Program Leader who leads teams to design & implement successful projects/programs that align business objectives and deliver rapid results, within timelines, budgets, and as per specifications.
peserta tidak perlu membawa laptop acara ini free for everyone
Acara ini akan diadakan pada: 27th September 2018
From 18:00 pm - 22:00 pm
Faspay Working Space
OWASP Jakarta Night #2
19:00 - 22:00
Tue, Aug 7, 2018
Marque at Cyber 2 Tower,
Jl. H. R. Rasuna Said Blok X-5 Cyber 2 Tower 17th Floor, RT.7/RW.2, Kuningan Timur, Jakarta, Kota Jakarta Selatan, 12950, Indonesia
• Event Program:
18.00p.m - 19.00p.m - Arrival Participant & Registration
19:00 pm – 19:15 p.m - Speech by OWASP Indonesia Chapter Leader , Ade Yoseman Putra
19.15p.m - 19.30 p.m - Speech including Q & A OWASP Indonesia Co Chapter Leader by Suman Sourav
19.30 p.m - 20.30 p.m - Speech including Q & A by David Holmes
20.30 p.m - 21.30 p.m - Speech including Q & A by Harley Davidson Karel (PDF)
21:30 p.m - 22.00 pm - photo together/networking session
Hybrid Cloud Security
Hybrid Cloud Security continues to be relevant topic. David Holmes ( Global Security Evangelist for F5 Networks) will detail F5’s experience assisting a Fortune 10 company overcome some of their security challenges in moving to a multi-cloud architecture. His presentation will also include a look at some new F5 technologies that secure and containerize application traffic.
Mr. Holmes is a 17-year veteran of F5 and has met with banking and finance, government, and private enterprise security teams all over the world so he usually has the measure of who is doing what and where. This is an excellent opportunity to pick his brain about architecture, industry trends, or any other security topic that is top of mind.
More about David Holmes:
Based in Asia Pacific, David Holmes is the Global Security Evangelist for F5 Networks. In this role, Holmes is spokesman, researcher and evangelist for F5’s threat intelligence division, with an emphasis on cryptography, distributed denial of service attacks, and the Internet of Things. He speaks at conferences such as RSA, InfoSec and Gartner Data Center.
Holmes authors white papers on security topics such as global cryptography trends and modern DDoS threat spectrum. He has also written for industry magazines such as the SCMagazine and Network World. These days,he writes regularly about vulnerabilities, technical solutions and the security industry for SecurityWeek.com and F5 Labs.
He joined F5 Networks in 2001, and, as a Principal Software Engineer, where he designed many of the system and core security features. Holmes has 20 years of experience in security and product engineering.
Prior to F5, Holmes was a Vice President of Engineering at Dvorak Development (in Boulder, CO) and a Senior Software Engineer (Security) at CyberSafe, Inc.
Holmes majored in Computer Science and Engineering Physics at the University of Colorado at Boulder. For public speaking, Holmes has a Competent Communicator award from Toastmasters International and other public speaking awards.
Many thanks to F5 for their sponsorship.
Harley Davidson Karel
Topic : Static Analysis Security Testing (SAST) using open source
Topic Extract :
Find security issues on development stage using open source static analysis security testing (SAST), so that developer will be able to identify security issues on earlier stage of software development life cycle, rather than waiting for penetration testing stage.
SAST demo will be conducted with command line interface usage, IDE integration, & Jenkins integration. The demo will scan and found security issues on several programming language such as Java, python, & ruby
Harley Davidson Karel is working as Associate Application Security Consultant at Vantage Point Security Indonesia. He is EC-Council Certified and well trained in working in application security activities that help organisations to put security aspect in every stage of software development life cycle. He has been selected as a speaker for PyConMY 2018 Kuala Lumpur, PyConES 2018 Malaga Spain, GrillRB 2018 Wroclaw Poland.
OWASP AppSec Indonesia 2018
OWASP AppSec Coming this year to indonesia. In asia just indonesia as host for owasp appsec regional conference 2018
When : 8-9 th november 2018
If you interested sponsor this OWASP AppSec Indonesia Conference 2018 just email us :firstname.lastname@example.org
OWASP Indonesia Q1 Meetup 2018
Reduce the Risk of a Data Breach with Open Source INTelligence (OSINT)
by Ayodya (Security Engineer at Bukalapak)
Building Appsec Pipeline
by Suman Sourav
OWASP Top 10 Mobile Application Vulnerability
• Event Program:
18.00p.m - 19.00p.m - Arrival Participant & Registration
19:00 pm – 19:15 p.m - Speech by OWASP Indonesia Chapter Leader
19.15p.m - 20.00 p.m - Speech including Q & A by Suman Sourav
20.00 p.m - 20.45 p.m - Speech including Q & A by Ayodya
20.45 p.m - 21.30 p.m - Speech including Q & A by william (PDF)
1. Security Engineer at Bukalapak
2. Master of Electrical Engineering (ICT Security) at University of Mercu Buana
3. Founder Cyber Security Division at Computer Student Club of Jakarta State Polytechnic
my name is williams, i'm currently doing my 3rd intenship in datacomm and writing my thesis in binus international. i have taken several ec council such as CEH,CHFI,CSCU and CEI.
topic:mobile security 101, most of the presentation will be cover the vulnerability that mostly found in mobile application(such as: owasp top 10 mobile application vulnerability). will talk more for android but will cover IOS security but not too many
SOFTWARE SECURITY ASSURANCE & DEVSECOPS PROFESSIONAL - VANTAGE POINT SECURITY PTE. LTD SINGAPORE
Suman has more than a decade experience in designing secure-SDLC programs and is passionate about integrating security into the development lifecycle. He is skilled beyond existing static analysis tools and code review techniques and shaping the way the industry secures code in a Continuous Deployment world. He has worked with various financial and non-financial institutions to implement software security life-cycle and has strong experience of creating an organizational framework to break silos security culture in the organization and builds an unified approach to deal with the root cause of software security problems.
19:00 - 22:00
Thursday, March 29, 2018
Bank BTPN. Menara BTPN, 27 th floor - CBD Mega Kuningan Jl. Dr. Ide Anak Agung Gde Agung Kav. 5.5 – 5.6 Jakarta 12950
OWASP Jakarta Q4 2017 Meetup
19:00 - 22:00
Tue, Nov 21, 2017
Menara BTPN - CBD Mega Kuningan
Jl. Dr. Ide Anak Agung Gde Agung Kav. 5.5 – 5.6 Jakarta 12950
OWASP Jakarta Q4 2017 Meetup
Menara BTPN, 27 th floor - CBD Mega Kuningan
Jl. Dr. Ide Anak Agung Gde Agung Kav. 5.5 – 5.6
Theme : Application Security in Owasp top 10 2017
at Q1 21th november 2017
From 19:00 pm - 22:00 pm
- Secure coding practices with golang (PDF)
by sulhaedir (IT Security Spesialis at Tokopedia)
- OWASP Risk Rating Management Project(PDF)
by M febri
Sulhaedir have 6 years experience in information security. he work as security specialist at TOKOPEDIA. he also Security research in nemosecurity
he work as Security Consultant at Visionet.
workshop with KSL UBL "improving Security Attack and Defense with OWASP"
when : Sat, September 16, 08:00 – 15:00 pm
Auditorium Universitas Budi Luhur, Jl. Ciledug Raya No.126, RT.1/RW.2, Petukangan Utara, Pesanggrahan, Kota Jakarta Selatan, Daerah Khusus Ibukota Jakarta 12260, Indonesia
OWASP Indonesia Day 2017
when Developers, startups, hackers will meet.. just visit us @ OWASP Indonesia Day 2017
Yogyakarta, 09 th september 2017
if you interested sponsor our events just contact Ade Yoseman Putra
OWASP Jakarta Tech Day Meetup 2017
OWASP Jakarta succesfully host meetup on May 2017
with Theme: "How Secure Ecommerce"
Date: 14 May 2017 02 pm to 05 pm (GMT+7 Jakarta)
Venue: PTC Pulogadung Trade Centre Ballroom 2nd Floor
Jalan Raya Bekasi, RW.3, Rw. Terate, Cakung, Kota Jakarta Timur, DKI Jakarta 13920
Google Maps :
- Turning Legal Website into DDoS Tool
by Kalpin Erlangga (Indonesia Honeynet Project) (PDF) .
- The Art of phishing, and how to save yourself
by Oliver Valentino (Security analyst BUKALAPAK) (PDF)
- Trend Defacement On Indonesia E-Commerce Website
by Achmad Syafaat (ID-SIRTII/CC)
- Client Side Security And Testing Tools
by David Cervigni ( Minded Security) (PDF)
- Hacking as a Livestyle
Matias Prasodjo(Dracos) (PDF)
Kalpin Erlangga Silaen
Kalpin Erlangga Silaen is a senior security consultant with experience more than 15 years in IT. He is a graduate of the Master of Computer in Faculty of Engineering and IT at Swiss German University. He was first winner as a team at Cyber Defense Competition, Ministry of Defense of Indonesia on 2013
(Jakarta) and 2014 (Surabaya). He has experience as security penetration tester for various industry such as telecommunication, banking, finance, and government for more than 7 years. His interests includes network and cloud security
Oliver Valentino is a tech evangelist and security enthusiast. Currently work as a security analyst at bukalapak. Got his bachelor degree from Universitas Advent Indonesia Bandung
David Cervigni is a Senior Security Consultant of the Minded Security consultants team. He has a strong experience in collaborating closely with developer teams to securing SDLC and DevOps systems. His specialties include secure coding training, vulnerability assessment, manual and automated code review solutions, critical software design and compliance. His experience maturated mostly in the financial sector and in the biggest institutions across Swiss and UK markets. He holds a master's degree in computer science from the University of Camerino.
Matias Prasodjo is Vice Leader DracOs Linux Team. he is Subject Matter Expert Security and System at PT Lintas Teknologi Indonesia.
OWASP Indonesia Meetup I 2017 on March 4 th, 2017
See More OWASP Indonesia Meetup I 2017 on March 4 th, 2017
OWASP Indonesia adalah sebuah salah satu cabang dari Yayasan OWASP di belahan dunia. Yayasan OWASP adalah terbuka dan organisasi non profit.Kami membuka kesempatan kepada orang indonesia untuk bergabung serta berkontribusi pada OWASP Indonesia (Jakarta) Chapter.
Apa Yang Bisa anda kontribusi kan pada Yayasan OWASP
OWASP Indonesia Chapter
1. Anda bisa menyediakan Tempat untuk Agenda kami
2. Anda bisa menjadi Speaker & Trainer dalam setiap Event kami
3. Anda bisa menjadi University Supporter Kami
4. Anda bisa menjadi Donatur kami
5. Anda bisa menjadi Kontributor kami dengan submit projek (membuat tools, keamanan aplikasi, dsb)
1. Anda bisa menjadi Speaker & Trainer dalam setiap Event Yayasan OWASP di seluruh dunia
2. Anda bisa menjadi Kontributor kami dengan submit projek (membuat tools, keamanan aplikasi, dsb) pada Yayasan OWASP Global
how to register OWASP membership, berikut saya sudah jelaskan step by stepnya di web owasp.or.id
Kami mencari volunteer untuk penerjemahan OWASP 2013 Top Ten dari Bahasa Inggris ke dalam Bahasa. Saat Ini sedang dalam pengerjaan / On Progress. Silahkan bergabung dengan tim kami tim penerjamah OWASP 2013 Top 10-Bahasa
|Chapter Leadership Board Member Role||Responsibilities||Person(s)|
|Chapter Leader||The central point of contact for the Chapter and responsible to the OWASP Board. Serves as Chapter Leader and Chapter board chair.||Ade Yoseman
(2016-2017 term + 2018 extended term + can to be extended term)
|Co Chapter Leader||The point of contact for the Chapter and responsible to the Chapter board chair. Serves as Co-Chapter Leader||Suman Sourav
(2018-2020 term + can to be extended term)
|Sponsor Coordinator||Serves as the primary liaison between the Chapter and all sponsors, and solicits sponsors for the Chapter meetings, happy hours, and other events.|
|Speaker and Special Event Coordinator||Seeks and schedules speakers for monthly Chapter meetings and other events. Organizes transportation for speakers as needed.|
|Conference Coordinator||Coordinates all of the efforts for the annual OWASP Indonesia Day.|
|PR/Marketing Coordinator||Provides marketing of OWASP Indonesia Day and other Chapter events.|
|Finance||The Chapter Leader is designated as primary person responsible for Chapter budget and Chapter expense approvals.
The previous Chapter Leader is designated as secondary approver, who also will approve any expenses submitted by the Chapter Leader.
|Advisory Board Members||Made up of previous Chapter leaders who provide mentoring, coaching, and assistance to the board and contribute to the Chapter’s success.|