Difference between revisions of "Atlanta Georgia"

From OWASP
Jump to: navigation, search
(Meeting Archive on Meetup.com)
 
(38 intermediate revisions by 2 users not shown)
Line 7: Line 7:
  
  
 +
== '''Join OWASP ATL via our Meetup Group'''  ==
 +
 +
From Jan 2012, we have moved to a [http://www.meetup.com/OWASP-Atlanta/ Meetup group]. MeetUp.com will replace the traditional subscriber email list eventually (referenced above in the top of this page).  It allows us to better communicate with members, RSVP for events, and announce meetings - all in one place.  Click on the following link to visit our meetup page and signup.
 +
 +
[http://www.meetup.com/OWASP-Atlanta/?a=shareimg http://img.meetup.com/img/logo_82.png]
 +
 +
== Atlanta Georgia OWASP Chapter Leaders  ==
 +
 +
<ul>
 +
<li>[http://www.owasp.org/index.php/User:Versprite Tony UcedaVelez] - Chapter Leader </li>
 +
<li>Steven Schwartz - Chapter Lead</li>
 +
<li>[https://www.owasp.org/index.php/User:Shauvik Shauvik Roy-Choudhary] - Chapter Lead</li>
 +
<li>Jon Bango - Chapter Lead</li>
 +
<li>Russell Eubanks - Chapter Lead</li>
 +
</ul>
 +
 +
 +
<!--
 
==== '''Local News'''  ====
 
==== '''Local News'''  ====
 +
  
 
== Latest News ==
 
== Latest News ==
So we have hit a bit of a lull over the past two months as you can probably tell. August meeting was really low attendance and September was a non-event since I largely have been out of town and so have a lot of the other co-leads.  Nonetheless, get ready to resume meetings.  Next one is Nov 17th at the Tilted Kilt @ Cumberland.  Make a note and check out details in the Chapter Meetings page above.  
+
So we have hit a bit of a lull over the past two months as you can probably tell. August meeting was really low attendance and September was a non-event since I largely have been out of town and so have a lot of the other co-leads.  Nonetheless, get ready to resume meetings.  Next one is Dec 15th at the Tilted Kilt @ Cumberland.  Make a note and check out details in the Chapter Meetings page above.  
  
 
FYI - We are trying to reach out to more developers, quality assurance engineers, and software architects so if you have colleagues in those areas, please invite them to come. For next meeting information, please visit the Chapter Meetings tab and RSVP in the link provided.
 
FYI - We are trying to reach out to more developers, quality assurance engineers, and software architects so if you have colleagues in those areas, please invite them to come. For next meeting information, please visit the Chapter Meetings tab and RSVP in the link provided.
Line 20: Line 39:
  
 
The Atlanta mailing list provides a low volume update to monthly events and also allows for members to post questions related to challenges in using and adopting OWASP related material/ tools. To join the Atlanta Mailing List, please sign up here: http://lists.owasp.org/mailman/listinfo/owasp-Atlanta
 
The Atlanta mailing list provides a low volume update to monthly events and also allows for members to post questions related to challenges in using and adopting OWASP related material/ tools. To join the Atlanta Mailing List, please sign up here: http://lists.owasp.org/mailman/listinfo/owasp-Atlanta
 +
 +
-->
  
 
== Becoming a Member or Sponsor ==
 
== Becoming a Member or Sponsor ==
Line 28: Line 49:
  
 
<br>
 
<br>
== Thank You to Our Supporters ==
+
== Thank You to Our 2012 Supporters ==
  
Thanks to the following list of chapter level supporters for their financial contributions and/ or hosting our chapter meetings in 2011.  
+
We're looking for sponsors in 2012.  Thanks to the following list of chapter level supporters for their financial contributions and/ or hosting our chapter meetings in 2012.  
 
   
 
   
 
<ul>
 
<ul>
<table>
+
<table cellpadding="15" cellspacing="0">
 
<tr>
 
<tr>
<td>[[Image:GTISC logo2.jpg]]</td>
+
<td>[[Image:whitehat.jpg]]</td>
 +
<td>[[Image:dellswrx.jpg]]</td>
 
<td>[[Image:versprite.jpg]]</td>
 
<td>[[Image:versprite.jpg]]</td>
<td>[[Image:stachliu.jpg]]</td>
+
<td>[[Image:wipro.jpg]]</td>
<td>[[Image:whitehat.jpg]]</td>
+
<td>[[Image:imperva.jpg]]</td>
+
 
</tr>
 
</tr>
</table>
 
<table>
 
 
<tr>
 
<tr>
<td>[[Image:adp.jpg]]</td>
+
<td>[[Image:Trustwave.jpg|200px]]</td>
<td>[[Image:iptrust.jpg]]</td>
+
<td>[[Image:WiKID_logo.jpg|200px]]</td>
<td>[[Image:dellswrx.jpg]]</td>
+
<td>[[Image:accuvant.jpg]]</td>
+
 
</tr>
 
</tr>
 
</table>
 
</table>
Line 54: Line 70:
 
== 2011 OWASP Atlanta Member Survey  ==
 
== 2011 OWASP Atlanta Member Survey  ==
 
The Atlanta OWASP Member Survey has come and gone. Thanks to all those that responded. A subset of the results is shown below in the form of top ranking security topics that members wish to see in 2011. [[Image:Owasp surv2011.jpg]]  
 
The Atlanta OWASP Member Survey has come and gone. Thanks to all those that responded. A subset of the results is shown below in the form of top ranking security topics that members wish to see in 2011. [[Image:Owasp surv2011.jpg]]  
 +
 +
 +
  
 
==== Chapter Meetings  ====
 
==== Chapter Meetings  ====
Line 59: Line 78:
 
== '''Future Meetings'''  ==
 
== '''Future Meetings'''  ==
  
===November 2011 Meeting===
+
Please check http://www.meetup.com/OWASP-Atlanta/events/ for a list of upcoming future meetings.
'''WHAT::''' November Chapter Meeting - 'HowTo Talk on Assessing Mobile Apps'
+
  
'''WHEN::''' 17th of November 2011. 6-8pm
 
  
'''WHERE::'''  Cumberland Pkwy Tilted Kilt http://atlanta-cumberland.tiltedkilt.com/
+
----
  
'''WHO::''' Jeremy Allen is the Chief Technology Officer with the Intrepidus Group. Jeremy is a regular speaker at popular security conferences such as BlackHat, SOURCE and OWASP AppSec. He is currently the lead on the development of the SANS “Secure Mobile Application Development: iOS App Security”  course. He has conducted numerous application assessments against iOS applications.  
+
= Meeting Archive on Meetup.com =
  
'''ABSTRACT::'''
 
This talk will focus on mobile application assessment techniques. The assessment techniques will focus on how to test applications for the OWASP Mobile Top 10 issues. Mitigation techniques for both Android and iOS will be discussed. Mallory, Intrepidus Group’s Man in The Middle tool designed to test mobile devices and applications, will be demonstrated throughout the presentation. Additionally, usage of other open source tools will be demonstrated. Both iOS and Android will be discussed. 
 
  
'''''COST''''': Free to all. Bring a Friend.
+
[http://www.meetup.com/OWASP-Atlanta/events/94108492/ Dec 2012 - Building a Secure SDLC w/ OWASP Projects]
  
 +
[http://www.meetup.com/OWASP-Atlanta/events/88009182/ Nov 2012 - Web Security CTF (primer)]
  
===December 2011 Meeting===
+
[http://www.meetup.com/OWASP-Atlanta/events/90863212/ AppSec for CISOs Breakfast]
'''WHAT::''' December Chapter Meeting - 'Preventing Data Breaches using Provenance-aware Firewalls'
+
  
'''WHEN::''' 15th of December 2011. 6-8pm
+
[http://www.meetup.com/OWASP-Atlanta/events/88192022/ 2012 Metro Atlanta ISSA Conference]
  
'''WHERE::'''  Cumberland Pkwy Tilted Kilt http://atlanta-cumberland.tiltedkilt.com/
+
[http://www.meetup.com/OWASP-Atlanta/events/87110162/ Oct 2012 - Security Testing Techniques]
  
'''WHO::''' Anirudh Ramachandran is a networks and systems security
+
[http://www.meetup.com/OWASP-Atlanta/events/77080162/ Sep 2012 - Social Networks & Fake Accounts: New Heaven for Spammers & Attackers]
researcher at Georgia Tech and the founder and CTO of Nouvou Inc., a
+
nascent data security startup. He has 6 years of experience developing
+
solutions in areas such as data breach prevention, high speed traffic
+
monitoring, network-level spam filtering, and botnet identification.
+
He graduated with a PhD in Computer Science from Georgia Tech in 2011.
+
http://www.cc.gatech.edu/~avr
+
  
'''ABSTRACT::''' Data breaches through Web application vulnerabilities have become
+
[http://www.meetup.com/OWASP-Atlanta/events/77588622/ August 2012 - HD Moore presents 'The Long Tail of Security']
particularly rampant. Point solutions -- for example, a Web
+
Application Firewall that scans requests destined to the Web app --
+
can only stop a limited number of attack patterns, and do not provide
+
any protection from a breach once a vulnerability is eventually
+
exploited. We have developed a complementary approach to prevent
+
breaches based on the idea that, if sensitive data is tracked closely
+
enough, a breach can be prevented without worrying about the Web
+
application vulnerability that led to the breach.
+
  
In this talk, I will present the architecture of SilverLine (associates tamper-proof tags with database
+
[http://www.meetup.com/OWASP-Atlanta/events/71686572/ July 2012 - HTML5 Security: A Beautiful Disaster]
records and files, and uses an OS-level module to track the flow of
+
tagged data through the various components of a Web application) and
+
describe how we integrated SilverLine with a popular open source
+
e-Commerce Web application, OSCommerce.
+
  
'''''COST''''': Free to all. Bring a Friend. However, please look to join our chapter.  Only $50.  No pressure, but greatly appreciate. Non-profit and good cause.
+
[http://www.meetup.com/OWASP-Atlanta/events/60876802/ June 2012 - Is There An End to Testing Ourselves Secure?]
<!--
+
===XXX 2011 Meeting===
+
'''WHAT::''' XXX Chapter Meeting -  
+
  
'''WHEN::''' XXth March 2011. 7-9pm
+
[http://www.meetup.com/OWASP-Atlanta/events/64176042/ May 2012 - Attack Chaining: Advanced Maneuvers for Hack Fu ]
  
'''WHERE::'''  Tilted Kilt http://tinyurl.com/4oh2thj
+
[http://www.meetup.com/OWASP-Atlanta/events/50563772/ April 2012 - Practical Android Security (Jack Mannino, nVisium Security)]
  
'''WHO::'''
+
[http://www.meetup.com/OWASP-Atlanta/events/54085342/  March 2012 - Trustwave 2012 Global Security Report - Trustwave]
  
 +
[http://www.meetup.com/OWASP-Atlanta/events/45830712/ February 2012 - Scanning Web2.0 – web applications aren’t web sites anymore (Kiril Mendelev, HP)]
  
'''RSVP::''' TBD
+
[http://www.meetup.com/OWASP-Atlanta/events/45830712/ January 2012 - Ninja Assessments: Stealth Security Testing for Organizations (Kevin Johnson, SamuraiWTF)]
  
'''''COST''''': Free to all.  Bring a Friend.
+
== Old meeting pages (before 2012) ==
-->
+
  
 +
[[Atlanta Member Meeting 12.15.11 | December 2011 - Preventing Data Breaches using Provenance-aware Firewalls (Anirudh Ramachandran, Nouvou Inc) ]]
  
----
+
[[Atlanta Member Meeting 11.17.11 | November 2011 - HowTo Talk on Assessing Mobile Apps ]]
 
+
== "Past Meetings"  ==
+
  
[[Atlanta Member Meeting 10.27.11 | October 2011 - Fuzzin' w/ JBroFuzz ]]
+
[[Atlanta Member Meeting 10.27.11 | October 2011 - Fuzzin' w/ JBroFuzz (Tony UV) ]]
  
 
[[Atlanta Member Meeting 08.18.11 | August 2011 - Mobile Security for the Enterprise (Billy Graham) ]]
 
[[Atlanta Member Meeting 08.18.11 | August 2011 - Mobile Security for the Enterprise (Billy Graham) ]]
Line 139: Line 132:
 
[[Atlanta Member Meeting 02.28.11 | Feb 2011 - Separated by a Common Language (Business-Geek Communication) ]]
 
[[Atlanta Member Meeting 02.28.11 | Feb 2011 - Separated by a Common Language (Business-Geek Communication) ]]
  
[[Atlanta Member Meeting 01.27.11 | Jan 2011 - OWASP Tool Medley ]]
+
[[Atlanta Member Meeting 01.27.11 | Jan 2011 - OWASP Tool Medley (Tony UV]]
  
 
[[Atlanta Member Meeting 12.16.10 | Dec 2010 - December Social Event]]
 
[[Atlanta Member Meeting 12.16.10 | Dec 2010 - December Social Event]]
Line 159: Line 152:
 
[[Atlanta Member Meeting 02.15.10 | Feb 2010 - DNS Security]]
 
[[Atlanta Member Meeting 02.15.10 | Feb 2010 - DNS Security]]
  
[[Atlanta Member Meeting 01.29.10 | Jan 2010 - Owasp Top 10]]
+
[[Atlanta Member Meeting 01.29.10 | Jan 2010 - Owasp Top 10 (Tony UV)]]
  
 
[[Atlanta Member Meeting 10.13.09 | Oct 2009 - Security Religions & Risk Windows (Jeremiah Grossman)]]  
 
[[Atlanta Member Meeting 10.13.09 | Oct 2009 - Security Religions & Risk Windows (Jeremiah Grossman)]]  
  
[[Atlanta Member Meeting 09.15.09 | Sept 2009 - Securing WebServices]]  
+
[[Atlanta Member Meeting 09.15.09 | Sept 2009 - Securing WebServices (Tony UV)]]  
  
 
[[Atlanta Member Meeting 08.17.09 | Aug 2009 - ISSA Event]]  
 
[[Atlanta Member Meeting 08.17.09 | Aug 2009 - ISSA Event]]  
Line 197: Line 190:
 
[[June 2005]]  
 
[[June 2005]]  
  
==== Atlanta Georgia OWASP Chapter Leaders  ====
 
 
<ul>
 
<li>[http://www.owasp.org/index.php/User:Versprite Tony UcedaVelez] - Chapter Leader </li>
 
<li>Steven Schwartz - Chapter Lead</li>
 
<li>[https://www.owasp.org/index.php/User:Shauvik Shauvik Choudhary] - Chapter Lead</li>
 
<li>Jon Bango - Chapter Lead</li>
 
<li>Russell Eubanks - Chapter Lead</li>
 
</ul>
 
 
<headertabs />
 
  
 
[[Category:Georgia]]
 
[[Category:Georgia]]

Latest revision as of 23:12, 27 December 2012

OwaspAtl.png


Contents

OWASP Atlanta

Welcome to the Atlanta chapter homepage. The chapter leader is Tony UcedaVelez
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


Join OWASP ATL via our Meetup Group

From Jan 2012, we have moved to a Meetup group. MeetUp.com will replace the traditional subscriber email list eventually (referenced above in the top of this page). It allows us to better communicate with members, RSVP for events, and announce meetings - all in one place. Click on the following link to visit our meetup page and signup.

logo_82.png

Atlanta Georgia OWASP Chapter Leaders


Becoming a Member or Sponsor

On behalf of the entire organization, I would like to solicit your financial support of our chapter via a tax deductible membership for OWASP as a great non-profit organization which aims to elevate web application security. We hope that you find historical and future meetings to be of value and show support via a member based contribution.

To contribute to OWASP-Atlanta, sign up as an individual member, or support us as a corporate sponsor, please visit: http://www.owasp.org/index.php/Membership. If you are already a member, please don't forget to renew your membership!! The same link will serve both purposes.



Thank You to Our 2012 Supporters

We're looking for sponsors in 2012. Thanks to the following list of chapter level supporters for their financial contributions and/ or hosting our chapter meetings in 2012.

    Whitehat.jpg Dellswrx.jpg Versprite.jpg Wipro.jpg
    Trustwave.jpg WiKID logo.jpg

2011 OWASP Atlanta Member Survey

The Atlanta OWASP Member Survey has come and gone. Thanks to all those that responded. A subset of the results is shown below in the form of top ranking security topics that members wish to see in 2011. Owasp surv2011.jpg



Chapter Meetings

Future Meetings

Please check http://www.meetup.com/OWASP-Atlanta/events/ for a list of upcoming future meetings.



Meeting Archive on Meetup.com

Dec 2012 - Building a Secure SDLC w/ OWASP Projects

Nov 2012 - Web Security CTF (primer)

AppSec for CISOs Breakfast

2012 Metro Atlanta ISSA Conference

Oct 2012 - Security Testing Techniques

Sep 2012 - Social Networks & Fake Accounts: New Heaven for Spammers & Attackers

August 2012 - HD Moore presents 'The Long Tail of Security'

July 2012 - HTML5 Security: A Beautiful Disaster

June 2012 - Is There An End to Testing Ourselves Secure?

May 2012 - Attack Chaining: Advanced Maneuvers for Hack Fu

April 2012 - Practical Android Security (Jack Mannino, nVisium Security)

March 2012 - Trustwave 2012 Global Security Report - Trustwave

February 2012 - Scanning Web2.0 – web applications aren’t web sites anymore (Kiril Mendelev, HP)

January 2012 - Ninja Assessments: Stealth Security Testing for Organizations (Kevin Johnson, SamuraiWTF)

Old meeting pages (before 2012)

December 2011 - Preventing Data Breaches using Provenance-aware Firewalls (Anirudh Ramachandran, Nouvou Inc)

November 2011 - HowTo Talk on Assessing Mobile Apps

October 2011 - Fuzzin' w/ JBroFuzz (Tony UV)

August 2011 - Mobile Security for the Enterprise (Billy Graham)

May 2011 - Don't Teach Your Developers Security (Caleb Sima, Armorize)

Apr 2011 - Demystifying WAFs (members from Imperva, Accuvant, WhiteHat Security Presenting)

Mar 2011 - Online Privacy (Samy Kamkar)

Feb 2011 - Separated by a Common Language (Business-Geek Communication)

Jan 2011 - OWASP Tool Medley (Tony UV

Dec 2010 - December Social Event

Oct 2010 - Rapid Development of Web Security Tools using SpiderSense

Sep 2010 - Search Engine Hacking

Aug 2010 - OWASP Guided Tour & Using the O2 Platform

Jun 2010 - Security Six Flags Outing

May 2010 - Clubbing WebApps with Botnets

Mar 2010 - Panel on Static & Dynamic Analysis for Web Apps

Feb 2010 - Embedded Malicious JavaScript

Feb 2010 - DNS Security

Jan 2010 - Owasp Top 10 (Tony UV)

Oct 2009 - Security Religions & Risk Windows (Jeremiah Grossman)

Sept 2009 - Securing WebServices (Tony UV)

Aug 2009 - ISSA Event

June 2009 - OWASP LIVE CD Workshop

Apr 2009 - Filter Evasion Techniques (Workshop)

Apr 2009 - Chapter Rebirth meeting

Atlanta ISACA OWASP Meeting 03.27.09

Atlanta Leadership Meeting 03.05.09

Atlanta Leadership Meeting 02.26.09

Atlanta OWASP May 2007 Meeting

Atlanta OWASP December 06 Social

Atlanta OWASP April Meeting

Chapter Meeting March 29th 2006

October 26th Meeting

April 27th, Chapter meeting a SUCCESS!

March 30th, 2005

February Meeting

June 2005