Difference between revisions of "Boulder"

From OWASP
Jump to: navigation, search
(11 intermediate revisions by 2 users not shown)
Line 4: Line 4:
 
== Upcoming Events ==
 
== Upcoming Events ==
  
'''Thursday, September 20th at 6pm – Capture the Flag(CTF) with Daniel Likarish'''
+
====Wednesday, January 16nd at 6pm – CTF Project Development====
  
 +
Plan, plot, hack, hang out.
  
Welcome back from the summer hiatus!
+
'''When''': Wednesday, January 2nd at 6:00pm
 +
<br>'''Where''': [https://aerstone.com/ Aerstone], located at [https://maps.google.com/maps?q=1711+Pearl+St,+Boulder,+CO+80302&hl=en&ll=40.018955,-105.272412&spn=0.005801,0.016512&sll=40.019446,-105.273058&layer=c&cbp=13,345.63,,0,0.03&cbll=40.019323,-105.273016&hnear=1711+Pearl+St,+Boulder,+Colorado+80302&t=m&z=17&panoid=5v0RhKi7sjpi-Z5HcgKFFw 1711 Pearl St.] (3rd floor).
 +
<br>'''Parking''': Free through the [http://files.meetup.com/3503072/Parking.png Whittier Neighborhood Zone].
 +
<br>'''RSVP''': available through [http://www.meetup.com/OWASP-Boulder/ MeetUp.com]
 +
<br>'''Virtual meeting''': available through [https://questconsultants.webex.com/ WebEx].
 +
<br>(Please call me if the door is locked or WebEx is down.)
  
OWASP Boulder resumes in September with a Capture the Flag (CTF) meeting. Next spring, [https://www.owasp.org/index.php/Front_Range_OWASP_Conference_2013 SnowFROC 2013] will feature a CTF-style hacking competition organized by local volunteers. Come and share your CTF experience, ideas, and bad code. We will discuss tournament format, rules, and framework.
+
The standing agenda includes status updates on:
 +
* Participant VM
 +
* Scoreboard
 +
* Challenge management
 +
* Challenge development
 +
* Challenge-framework integration
 +
* General project administration
 +
* Roadblocks
  
To kick-off the project, Professor Daniel Likarish of Regis University, organizer of the Rocky Mountain Collegiate Cyber Defense Competition (RMCCDC), will share his experiences in building a CTF tournament from scratch.
+
Any time left over will be used for collaboration and coding.
  
Although this meeting is oriented on developing a CTF tournament, we will discuss a variety of other current events.
 
  
'''About Professor Likarish:''' Dan is an assistant professor in the School of Computing & Information Sciences with responsibility for Information Assurance program coordination, students and research at [http://academic.regis.edu/cias/AboutUs.html Regis University]. He is Director of the Colorado Front-range Center on Information Assurance Studies. His research and teaching interests are in the design and implementation of student cyber security competitions, security of critical SCADA infrastructure and virtualization of student lab exercises. He has installed and is calibrating a Radio Telescope for use as a K-Collegiate teaching instrument and directs the Rocky Mountain Collegiate Cyber Defense Competition. He is the recipient of various state, industry and federal grants and awards.
+
====Thursday, January 17th at 6pm – OWASP Project Round-Up====
  
'''About the RMCCDC:''' Seven teams representing Kansas, Colorado and New Mexico attended the competition consisting of a two-day scenario-driven event with teams responsible for recovery and maintenance of business services, processes and defense of the network after a gaming company was successfully attacked. The event provided an opportunity to capture several data sets; live attack and response data by the Red Team, Blue Team interviews as well as post event participant surveys. The competition included cadets from the Air Force Academy who went on to finish in second place at the [http://nationalccdc.org/ National CCDC] in April of 2012.
+
To kick off 2013 the Boulder Chapter is holding an OWASP Project Roundup. Chapter members will showcase OWASP projects --from well-known to obscure-- in a series of lightning talks.
  
Seating is limited! We can only accommodate seating for those who [http://www.meetup.com/OWASP-Boulder/ RSVP]. If you have a change of plans, please update your RSVP to allow those who are on the waiting list.
+
'''When''': Thursday, January 17th at 6:00pm
 +
<br>'''Where''': [https://aerstone.com/ Aerstone], located at [https://maps.google.com/maps?q=1711+Pearl+St,+Boulder,+CO+80302&hl=en&ll=40.018955,-105.272412&spn=0.005801,0.016512&sll=40.019446,-105.273058&layer=c&cbp=13,345.63,,0,0.03&cbll=40.019323,-105.273016&hnear=1711+Pearl+St,+Boulder,+Colorado+80302&t=m&z=17&panoid=5v0RhKi7sjpi-Z5HcgKFFw 1711 Pearl St.] (3rd floor).
 +
<br>'''Parking''': Free through the [http://files.meetup.com/3503072/Parking.png Whittier Neighborhood Zone].
 +
<br>'''RSVP''': available through [http://www.meetup.com/OWASP-Boulder/events/93638032/ MeetUp.com]
 +
<br>'''Virtual meeting''': available through [https://questconsultants.webex.com/questconsultants/j.php?ED=16221943&UID=495177262&RT=MiM2 WebEx].
 +
 
 +
To make this work I need volunteers. Your job is to pick a project, learn a bit about it, then present it to the rest of the group. Informal discussions are good, prepared presentations are better, and live demos are best. The goal is lively, informative, low-stress discussions rather than formal, extensively-research presentations. Spend an hour or two familiarizing yourself with your project (you do not need to be an expert on it), jot your notes into a couple of slides, then share with the group for 5 - 10 minutes.
 +
 
 +
Need help selecting a project? Take a look at the [[:Category:OWASP_Project|OWASP Projects page]]. Try tools you use already (the [[:Category:OWASP Top Ten Project|OWASP Top 10]]), tools you've heard of and want to learn more about ([[:Category:OWASP_WebGoat_Project|WebGoat]]), or discover something entirely new ([[:Category:OWASP Enterprise Security API|ESAPI]]). All projects are encouraged, from the popular to the esoteric. Still undecided? Send me a note with your interest in presenting and I will happily suggest some projects to choose from.
 +
 
 +
To avoid duplicates, project topics will be first-come first-served. Email your topic idea to either mark.major or rob.jepson at owasp.org and we will add you to the meeting agenda. Please check this Wiki (or the [http://www.meetup.com/OWASP-Boulder/ chapter's MeetUp.com page]) to see what other people have taken prior to choosing your topic.
 +
 
 +
Current project presentations (in no particular order):
 +
*Mark: O-Saft
 +
*Rob: Top 10
 +
*Sunil: WebScarab
 +
*Del: Zap
 +
*Greg: Mantra
 +
*Mike: DirBuster
 +
*Karen: Threat Modeling
 +
 
 +
Please remember that seating is limited and is prioritized for those who RSVP through MeetUp. If you have a change of plans, please update your RSVP status to allow space for those on the waiting list. Food and drinks are provided and the facilities will remain open after the meeting for socializing and networking. All meetings are free to attend.
 +
 
 +
 
 +
====Special Thanks====
 +
The Boulder chapter is grateful for the continued sponsorship of Aerstone. Thank you for providing the venue, refreshments, and other resources necessary to keep the chapter running strong.
 +
 
 +
[[File:BoulderSponsorAerstone.png]]
  
The meeting will be held at the [https://maps.google.com/maps?q=1711+Pearl+St,+Boulder,+CO+80302&hl=en&ll=40.018955,-105.272412&spn=0.005801,0.016512&sll=40.019446,-105.273058&layer=c&cbp=13,345.63,,0,0.03&cbll=40.019323,-105.273016&hnear=1711+Pearl+St,+Boulder,+Colorado+80302&t=m&z=17&panoid=5v0RhKi7sjpi-Z5HcgKFFw Aerstone offices] on 17th and Pearl. Parking is available through the [http://files.meetup.com/3503072/Parking.png Whittier Neighborhood Zone] for up to three hours daily. As always, food and drinks are free and there will be an open networking session after the meeting.
 
  
 
[[Category:OWASP Chapter]]
 
[[Category:OWASP Chapter]]
 
[[Category:Colorado]]
 
[[Category:Colorado]]

Revision as of 18:55, 18 January 2013

Contents

OWASP Boulder

Welcome to the Boulder chapter homepage. The chapter leader is Mark Major.
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG

Upcoming Events

Wednesday, January 16nd at 6pm – CTF Project Development

Plan, plot, hack, hang out.

When: Wednesday, January 2nd at 6:00pm
Where: Aerstone, located at 1711 Pearl St. (3rd floor).
Parking: Free through the Whittier Neighborhood Zone.
RSVP: available through MeetUp.com
Virtual meeting: available through WebEx.
(Please call me if the door is locked or WebEx is down.)

The standing agenda includes status updates on:

  • Participant VM
  • Scoreboard
  • Challenge management
  • Challenge development
  • Challenge-framework integration
  • General project administration
  • Roadblocks

Any time left over will be used for collaboration and coding.


Thursday, January 17th at 6pm – OWASP Project Round-Up

To kick off 2013 the Boulder Chapter is holding an OWASP Project Roundup. Chapter members will showcase OWASP projects --from well-known to obscure-- in a series of lightning talks.

When: Thursday, January 17th at 6:00pm
Where: Aerstone, located at 1711 Pearl St. (3rd floor).
Parking: Free through the Whittier Neighborhood Zone.
RSVP: available through MeetUp.com
Virtual meeting: available through WebEx.

To make this work I need volunteers. Your job is to pick a project, learn a bit about it, then present it to the rest of the group. Informal discussions are good, prepared presentations are better, and live demos are best. The goal is lively, informative, low-stress discussions rather than formal, extensively-research presentations. Spend an hour or two familiarizing yourself with your project (you do not need to be an expert on it), jot your notes into a couple of slides, then share with the group for 5 - 10 minutes.

Need help selecting a project? Take a look at the OWASP Projects page. Try tools you use already (the OWASP Top 10), tools you've heard of and want to learn more about (WebGoat), or discover something entirely new (ESAPI). All projects are encouraged, from the popular to the esoteric. Still undecided? Send me a note with your interest in presenting and I will happily suggest some projects to choose from.

To avoid duplicates, project topics will be first-come first-served. Email your topic idea to either mark.major or rob.jepson at owasp.org and we will add you to the meeting agenda. Please check this Wiki (or the chapter's MeetUp.com page) to see what other people have taken prior to choosing your topic.

Current project presentations (in no particular order):

  • Mark: O-Saft
  • Rob: Top 10
  • Sunil: WebScarab
  • Del: Zap
  • Greg: Mantra
  • Mike: DirBuster
  • Karen: Threat Modeling

Please remember that seating is limited and is prioritized for those who RSVP through MeetUp. If you have a change of plans, please update your RSVP status to allow space for those on the waiting list. Food and drinks are provided and the facilities will remain open after the meeting for socializing and networking. All meetings are free to attend.


Special Thanks

The Boulder chapter is grateful for the continued sponsorship of Aerstone. Thank you for providing the venue, refreshments, and other resources necessary to keep the chapter running strong.

BoulderSponsorAerstone.png