OWASP Kerala Women in AppSec Meet june 8 2019

From OWASP
Jump to: navigation, search

OWASP Kerala

OWASP Kerala Women in AppSec Meet, June 2019

Kerala women in appsec june 8 2019 flyer.jpg

Venue

  • Meet up cafe, KSUM, Ground floor, Thejaswini Building, Technopark, Trivandrum

Date & Time

  • June 8th 2019 (2PM To 5PM)

Event Sponser

  • FutureLab, KSUM

Agenda

Privacy and Data Protection (2 PM – 2:45 PM)
  • Speaker: Archana Venugopal, Manager- Cyber Risk, Big 4

The session will give you an insight on GDPR, Indian Privacy law, and career on Data Protection

  1. Global Scenarios which lead to concerns in data and governance practices. In this section, we will discuss what is data, data management, data breaches and the importance of data protection
  2. Short note on GDPR and its impact on organizations in India. In the second session, we will explain about The General Data Protection Regulation (EU) 2016/679 ("GDPR") which is the most complex regulation law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA). The GDPR impact on Indian organizations will also be discussed.
  3. Indian privacy law. In this session, draft Indian privacy law, its implications, major clauses and its impact on organizations will be discussed.
  4. Certifications in Privacy /Privacy as a career. In this session, we will explain about certifications like DCPP, DCCP, CIPP Certification-IAPP, CIPM, CIPT, EXIN Privacy & Data Protection
Mobile Application Pen Testing (2:45 PM – 3:45 PM)
  • Speaker: Samyuktha V Bhat, Security Consultant, EY

The session will mainly focus on below key points:

  1. Preparing the test environment, Under this section will discuss the tools and software to be used. How to root the device or emulator.
  2. Information Gathering, Will discuss application mapping by analyzing the functionalities, user inputs, etc associated with the application.
  3. Code review, Analyzing the underlying application code by decompiling the apk file.
  4. Client-side Attacks, Owasp top ten vulnerabilities such as SQL injection, Data storage-related vulnerabilities would be discussed here.
  5. Code tampering and manipulation, Hooking methods using Frida and Xposed.
  6. Network Attacks

In this section, will discuss all network-related vulnerabilities. If time permits will discuss on iOS specific security concerns

How to Get Started with OSCP (3:45 PM – 4:30 PM )
  • Speaker: Sreelakshmy Palliyil, Asst.Manager, Big4
  1. Exam Structure, In this section, we will discuss exam structure, lab durations, fees and all
  2. Preparation, Things required for OSCP Preparation
  3. Journey, Lab Structure, learning, exploitation
  4. Reporting
  5. Exam

Registration

Register Here


OWASP Kerala