Difference between revisions of "AppSecEU2013"

From OWASP
Jump to: navigation, search
m
(22 intermediate revisions by 2 users not shown)
Line 11: Line 11:
 
== Welcome  ==
 
== Welcome  ==
  
The <u>[[Germany|German OWASP Chapter]]</u> will host the OWASP AppSec Europe Research 2013 global conference in beautiful <u>[http://en.wikipedia.org/wiki/Hamburg Hamburg]</u>, Germany from August 20-23. Hamburg is the <u>[http://travel.nytimes.com/2012/01/22/travel/36-hours-hamburg-germany.html sleeping beauty]</u> of Germany, in the very north of it.
+
The <u>[[Germany|German OWASP Chapter]]</u> will host the OWASP AppSec Europe Research 2013 global conference in <u>[http://en.wikipedia.org/wiki/Hamburg Hamburg]</u>, Germany from August 20-23. Hamburg is the second biggest city in Germany, <u>[https://maps.google.com/maps?q=Hamburg,+Germany&hl=en&ll=51.426614,10.239258&spn=12.838461,14.589844&sll=37.0625,-95.677068&sspn=61.799062,58.359375&oq=hamburg&hnear=Hamburg,+Germany&t=m&z=6 located in the north]</u>. To quote New York Times: <u>[http://travel.nytimes.com/2012/01/22/travel/36-hours-hamburg-germany.html No one tells you how pretty Hamburg is]</u>. We do.  
  
 
The AppSec Europe 2013 conference will be a premier gathering of Information Security leaders, also it is going to have a research part.
 
The AppSec Europe 2013 conference will be a premier gathering of Information Security leaders, also it is going to have a research part.
Line 19: Line 19:
 
On the research side OWASP's AppSecEU Research will give you an excellent chance to present your cutting edge research, including a paper for the proceedings.
 
On the research side OWASP's AppSecEU Research will give you an excellent chance to present your cutting edge research, including a paper for the proceedings.
  
The conference will be held from August 20-23, 2013 at the <u>[http://www.emporio-hamburg.de/en/ Emporio Hamburg]</u>. It's <u>[https://maps.google.de/maps?q=emporio+hamburg&hl=en&sll=53.561418,10.01215&sspn=0.043996,0.082397&hq=emporio+hamburg&t=m&z=15 centrally located]</u> in the city of Hamburg with a splendid <u>[http://www.emporio-hamburg.de/uploads/tx_templavoila/09_20101026-_mg_8051_hdr_02.jpg view]</u> over Binnen-, Aussenalster and River Elbe.
+
The conference will be held from August 20-23, 2013 at the <u>[http://www.emporio-hamburg.de/en/ Emporio Hamburg]</u>. It's <u>[https://maps.google.de/maps?q=emporio+hamburg&hl=en&sll=53.561418,10.01215&sspn=0.043996,0.082397&hq=emporio+hamburg&t=m&z=15 centrally located]</u> in the heart of the city with a splendid <u>[http://www.location-award.de/la_videos/Panoramadeck/ view]</u> <u>[http://www.nordevent.com/nord-event-panoramadeck-en.html over]</u> Binnen-, Aussenalster and River Elbe.
  
 
==== Facts in a nutshell ====
 
==== Facts in a nutshell ====
Line 25: Line 25:
 
;Location: <u>[http://www.emporio-hamburg.de/en/ Emporio Hamburg]</u>
 
;Location: <u>[http://www.emporio-hamburg.de/en/ Emporio Hamburg]</u>
 
;Sponsors: <u>[https://www.owasp.org/images/0/03/Sponsorship_Description_AppSec_EU_2013.pdf Sponsorship Description]</u>
 
;Sponsors: <u>[https://www.owasp.org/images/0/03/Sponsorship_Description_AppSec_EU_2013.pdf Sponsorship Description]</u>
;CfP: ''coming in January''
+
;Call for ...
;CfT: ''coming in January''
+
: [[AppSecEU2013/CfPresos|Presentations]] (Industry)
 +
: [[AppSecEU2013/CfPapers|Papers]] (Research)
 +
: [[AppSecEU2013/CfTrainings|Call for Trainings]]
 
;Registration: ''not open yet''
 
;Registration: ''not open yet''
 +
  
 
== Sponsorship ==
 
== Sponsorship ==
  
AppSecEU is seeking for sponsors. We have several possibilities how you can promote your company, seek for employees and on the other side support the conference. Please find the preliminary description in a <u>[[Media:Sponsorship_Description_AppSec_EU_2013.pdf|PDF here]]</u>. More details soon to come.
+
AppSecEU is seeking for sponsors. We have several possibilities how you can promote your company, seek for employees and on the other side support the conference. Please find the description, pricing and possible items in a <u>[[Media:Sponsorship_Description_AppSec_EU_2013.pdf|PDF here]]</u>.  
 +
 
 +
== Call for {Presentations,Papers,Trainings} ==
 +
 
 +
We'll have there seperate "Calls":
 +
* The <u>[[AppSecEU2013/CfPresos|Call for Presentations]]</u> is the standard one for the regular tracks
 +
* The <u>[[AppSecEU2013/CfPapers|Call for Papers]]</u> is for the Research track
 +
* <u>[[AppSecEU2013/CfTrainings|Call for Trainings]]</u>: as the name says
 +
 
  
 
== Teams ==
 
== Teams ==
Line 39: Line 50:
 
:[[User:Kai Jendrian|Kai Jendrian]] (Co-Chair)
 
:[[User:Kai Jendrian|Kai Jendrian]] (Co-Chair)
 
:Birgit Bernskötter (External)
 
:Birgit Bernskötter (External)
 +
:[[User:Ingo Hanke|Ingo Hanke]]
 
:Boris Hemkemeier
 
:Boris Hemkemeier
 
:[[User:Achim|Achim Hoffmann]]
 
:[[User:Achim|Achim Hoffmann]]
:[[User:Ingo Hanke|Ingo Hanke]]
 
 
:Martin Johns
 
:Martin Johns
 +
:Hartwig Gelhausen
 
:Tobias Glemser
 
:Tobias Glemser
 
:[[User:Sdeleersnyder|Sebastien Deleersnyder]]
 
:[[User:Sdeleersnyder|Sebastien Deleersnyder]]
Line 50: Line 62:
 
Contact: orga2013//lists/appsec/eu
 
Contact: orga2013//lists/appsec/eu
  
=== Program Committee (to be completed) ===
 
  
:[[user:John.wilander|John Wilander]] (Research + Industry) <!-- (OWASP Sweden Chapter Leader) -->
+
;Twitter
:[[User:Sebastian Schinzel|Dr. Sebastian Schinzel]] (Research + Industry)
+
:[https://twitter.com/#!/search/appseceu Twitter: @appseceu]
<!-- Prof. Dr. Hannes Federath (Research) -->
+
:[https://twitter.com/#!/search/OWASP_de Twitter: @OWASP_de] (German account)
<!-- Prof. Dr? Dieter Gollmann (Research) -->
+
:[[User:Achim|Achim Hoffmann]]
+
:Dr. Boris Hemkemeier
+
:Prof. Dr. Sachar Paulus
+
:Holger Junker
+
:[[User:Conpap|Dr Konstantinos Papapanagiotou]]
+
:[[User:Dinis.cruz|Dinis Cruz]]
+
:[[User:Sdeleersnyder|Sebastien Deleersnyder]]
+
:[[User:jmanico|Jim Manico]]  
+
  
  
:Dr. Martin Johns
+
== Countdown Challenges ==
:[[User:Dirk Wetter|Dr. Dirk Wetter]]
+
  
Contact: pk2013//lists/appsec/eu
+
;Win Free Tickets to AppSec EU Research 2013!
  
;Twitter
+
There will be a challenge posted on the conference wiki page every month up until the event
:[https://twitter.com/#!/search/appseceu Twitter: @appseceu]
+
in August.
:[https://twitter.com/#!/search/OWASP_de Twitter: @OWASP_de] (German account)
+
The winner of each challenge will get free entrance to the conference, worth about €400.
 +
Be sure to sign up for the conference mailing list to get a monthly reminder.
 +
 
 +
The challenge starts here:
 +
https://www.hacking-lab.com/events/registerform.html?eventid=397&uk=78h2Cz5xvYrCde5oGAEc1GDcacfwuYtM
 +
 
 +
 
 +
;How to Win
 +
 
 +
Each challenge will be announced on the conference wiki page and the conference mailing list
 +
(what you see here). Simply follow the link, login, and follow the instructions for the challenge.
 +
Provide your solution, which then will be marked.
 +
The challenge will be opened right after the announcement and will be closed 23 days later.
 +
The winner will be rewarded a free conference ticket 3 days later.
 +
 
 +
The free ticket is personal and the judgement of the organizing committee can not be overruled.
 +
 
 +
 
 +
;How it Works
 +
 
 +
Each challenge will have its unique link and will be open for 23 days after announcement.
 +
 
 +
If you follow the link, the site will ask for login (see "Login directly (Existing Hacking-Lab Account)"), or to sign-up (see "Sign-up a new Hacking-Lab
 +
Account") if you don't have a login.
 +
You may use your existing account, or sign-up for a new one.
 +
 
 +
To participate on the challenge, you need an account at Hacking-Lab. You just need an email
 +
address for that and you can use a nickname of your choice. Only the nickname will be public.
 +
 
 +
 
 +
;How to Start
 +
 
 +
Step0: Prepare your client with a preconfigured virtual host in VMware Player or VirtualBox.
 +
Install the LiveCD image
 +
https://www.hacking-lab.com/Remote_Sec_Lab/livecd.html
 +
in your virtual host.
 +
 
 +
Download links are:
 +
 
 +
https://www.virtualbox.org/wiki/Downloads
 +
 
 +
http://www.vmware.com/products/player/
 +
 
 +
Step1: Follow the link from your mail or posted at conference wiki.
 +
 
 +
Step2: Login
 +
 
 +
Step3: Switch to the challenge
 +
 
 +
Step4: To solve the task you need a VPN connection as shown in
 +
https://www.hacking-lab.com/Remote_Sec_Lab/lab-infrastructure.html
 +
 
 +
Step5: Connect to hacking-lab.com after starting your Live-CD from within your virtual host
 +
as described in
 +
https://www.hacking-lab.com/Remote_Sec_Lab/OpenVPN.html
 +
 
 +
Step6: To complete the task (event), send your description of the vulnerability including
 +
an exploit and a description for mitigations using the provided "Send Solution" button.
 +
 
 +
;Good luck!!

Revision as of 04:44, 22 February 2013

original photo from IqRS


Contents


Welcome

The German OWASP Chapter will host the OWASP AppSec Europe Research 2013 global conference in Hamburg, Germany from August 20-23. Hamburg is the second biggest city in Germany, located in the north. To quote New York Times: No one tells you how pretty Hamburg is. We do.

The AppSec Europe 2013 conference will be a premier gathering of Information Security leaders, also it is going to have a research part.

Executives from Fortune 500 firms along with technical thought leaders such as security architects and lead developers will be traveling to hear the cutting-edge ideas presented by Information Security’s top talent. OWASP events attract a worldwide audience interested in “what’s next”. The conference is expected to draw 400-500 technologists from Government, Financial Services, Media, Pharmaceuticals, Healthcare, Technology and many other verticals.

On the research side OWASP's AppSecEU Research will give you an excellent chance to present your cutting edge research, including a paper for the proceedings.

The conference will be held from August 20-23, 2013 at the Emporio Hamburg. It's centrally located in the heart of the city with a splendid view over Binnen-, Aussenalster and River Elbe.

Facts in a nutshell

Date
August 20-23, 2013
Location
Emporio Hamburg
Sponsors
Sponsorship Description
Call for ...
Presentations (Industry)
Papers (Research)
Call for Trainings
Registration
not open yet


Sponsorship

AppSecEU is seeking for sponsors. We have several possibilities how you can promote your company, seek for employees and on the other side support the conference. Please find the description, pricing and possible items in a PDF here.

Call for {Presentations,Papers,Trainings}

We'll have there seperate "Calls":


Teams

Conference Orga

Dirk Wetter (Chair)
Kai Jendrian (Co-Chair)
Birgit Bernskötter (External)
Ingo Hanke
Boris Hemkemeier
Achim Hoffmann
Martin Johns
Hartwig Gelhausen
Tobias Glemser
Sebastien Deleersnyder
Kelly Santalucia
Sarah Baso

Contact: orga2013//lists/appsec/eu


Twitter
Twitter: @appseceu
Twitter: @OWASP_de (German account)


Countdown Challenges

Win Free Tickets to AppSec EU Research 2013!

There will be a challenge posted on the conference wiki page every month up until the event in August. The winner of each challenge will get free entrance to the conference, worth about €400. Be sure to sign up for the conference mailing list to get a monthly reminder.

The challenge starts here: https://www.hacking-lab.com/events/registerform.html?eventid=397&uk=78h2Cz5xvYrCde5oGAEc1GDcacfwuYtM


How to Win

Each challenge will be announced on the conference wiki page and the conference mailing list (what you see here). Simply follow the link, login, and follow the instructions for the challenge. Provide your solution, which then will be marked. The challenge will be opened right after the announcement and will be closed 23 days later. The winner will be rewarded a free conference ticket 3 days later.

The free ticket is personal and the judgement of the organizing committee can not be overruled.


How it Works

Each challenge will have its unique link and will be open for 23 days after announcement.

If you follow the link, the site will ask for login (see "Login directly (Existing Hacking-Lab Account)"), or to sign-up (see "Sign-up a new Hacking-Lab Account") if you don't have a login. You may use your existing account, or sign-up for a new one.

To participate on the challenge, you need an account at Hacking-Lab. You just need an email address for that and you can use a nickname of your choice. Only the nickname will be public.


How to Start

Step0: Prepare your client with a preconfigured virtual host in VMware Player or VirtualBox. Install the LiveCD image https://www.hacking-lab.com/Remote_Sec_Lab/livecd.html in your virtual host.

Download links are:

https://www.virtualbox.org/wiki/Downloads

http://www.vmware.com/products/player/

Step1: Follow the link from your mail or posted at conference wiki.

Step2: Login

Step3: Switch to the challenge

Step4: To solve the task you need a VPN connection as shown in https://www.hacking-lab.com/Remote_Sec_Lab/lab-infrastructure.html

Step5: Connect to hacking-lab.com after starting your Live-CD from within your virtual host as described in https://www.hacking-lab.com/Remote_Sec_Lab/OpenVPN.html

Step6: To complete the task (event), send your description of the vulnerability including an exploit and a description for mitigations using the provided "Send Solution" button.

Good luck!!