Difference between revisions of "Brisbane"

From OWASP
Jump to: navigation, search
 
(29 intermediate revisions by 2 users not shown)
Line 1: Line 1:
{{Chapter Template|chaptername=Brisbane|extra=The chapter leader are [mailto:anne.luk@owasp.org Anne Luk], [mailto:wade@bindshell.net Wade Alcorn], and [mailto:glyng@owasp.org Glyn Geoghagen]||mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-brisbane|emailarchives=http://lists.owasp.org/pipermail/owasp-brisbane}}  
+
{{Chapter Template|chaptername=Brisbane|extra=The chapter leaders are [mailto:anne.luk@owasp.org Anne Luk], [mailto:wade@bindshell.net Wade Alcorn], [mailto:glyng@owasp.org Glyn Geoghegan] and [mailto:djorm@redhat.com David Jorm]||mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-brisbane|emailarchives=http://lists.owasp.org/pipermail/owasp-brisbane}}  
 +
<paypal>Brisbane</paypal>
  
==== Local News  ====
+
== Local News  ==
 +
==== Presenters and Presentations ====
 +
We are forever looking for volunteers to present at the chapter meetings, so if you've seen something interesting or you have something to say, please let us know.
  
In March's OWASP Brisbane Chapter meeting, Paul Ducklin will present a session titled "Live Malware Attack!" :
+
Often, when we approach potential presenters, we tend to get the following response – “I don’t think my topic is interesting enough”.  We just want to stress that as long as the topic is security related – we’re all ears! We’re just a bunch of nice people wanting to learn/share our knowledge of the security domain.  So if you would like to present or know of someone that does, please contact us.
  
Widespread, fast internet connectivity has an ugly side: growing opportunity for cybercriminality. You can visualise the scale of the problem by considering that Sophos Labs processes some 20,000 malware sample submissions, and identifies some 30,000 newly infected web pages, *every day*.
+
Presentations must be vendor agnostic (no selling of products or services), and please review the Speaker Agreement linked above.
  
These infected pages are rarely on web sites set up specially by the cybercriminals. They are *your* websites, remotely hacked and subverted by criminals who then use your servers to redirect innocent visitors to overtly malicious content.
+
== Chapter Meetings  ==
  
Come to this talk and find out, through a live demo (safely done, but using real malware) how a modern cybercriminal attack works. Understand how even a well-informed user can be tricked.
+
'''Next Brisbane Chapter Meeting - Tuesday April 1, 2014'''
  
We will track an attack through:
+
We've got Robert Winkel presenting in April's chapter meeting on the topic "Lock Picking".
  
* a scam email linking to...
+
Robert has 20+ years of experience in the information security and intelligence fields. He is the Director of Saltbush Assurance, an Australian firm that performs penetration testing, digital forensics and security code reviews for government and industry both local and worldwide. Robert has developed and presented training courses around the world on topics that include penetration testing, web application vulnerability assessment, wireless penetration testing, Open Source Intelligence (OSINT), protocol reverse-engineering and lock picking.
* a legitimate but compromised site, redirecting to...
+
* a malware site serving shrouded JavaScript which...
+
* creates a web page on the fly inside the browser which...
+
* unleashes a drive-by exploit which...
+
* crashes your browser so that it...
+
* connects to Hong Kong and silently downloads...
+
* a bot which includes...
+
* a rootkit which shrouds the bot from sight and...
+
* begs the question, "what do we do now?"
+
  
Know how your enemy is likely to attack and you will be much better prepared to answer that final question!
+
Robert is a certified GPEN and PCI-DSS QSA, and has dabbled in a Double Bachelor in Computer Science / Communications and Electronic Engineering. He has also attained a Masters in Information Technology and a Masters in Electrical Engineering.
  
This session is interactive, meaning that you are encouraged to interject with observations or questions at any time during the presentation. (Learning is supposed to be fun :-)  )
+
Robert’s interest in lock picking came from a merger of his love for mechanical puzzles and security.  
 
+
Paul's Biography can be found here:
+
http://www.sophos.com/pressoffice/contacts/pauld.html
+
 
+
<br>
+
<br>
+
Venue: <b>CERT Australia Offices, Level 11, 301 Coronation Drive, Milton.</b>
+
 
+
Time: <b>5:30pm (Pizza) for a 6pm start </b>
+
 
+
Date: <b>Tuesday 1st March </b>
+
 
+
Close: Session is expected to be completed by 7:30pm.
+
 
+
RSVP: <b>Online at http://owasp-brisbane.eventbrite.com</b>
+
 
+
<br>
+
<br>
+
 
+
 
+
<paypal>Brisbane</paypal>
+
  
==== Chapter Meetings  ====
+
He has been involved in the Ruxcon lock picking event for many years, has recently spoken at the inaugural CrikeyCon in Brisbane, and has also run events at WAHCKon and Kiwicon.
  
<b>March 2011 Brisbane Chapter Meeting - Tuesday 1 March</b>
 
  
Venue: <b>CERT Australia Offices, Level 11, 301 Coronation Drive, Milton.</b>
+
''Venue:'' Red Hat Offices, Level 1, 193 North Quay, Brisbane.
  
Time: <b>5:30pm (Pizza) for a 6pm start </b>
+
''Time:'' 5:30pm for a 6pm start.  Lifts to Level 1 will be locked after 6pm.  Please arrive before then! 
  
Close: Session is expected to be completed by 7:30pm.
+
''Date:'' Tuesday 1st April
  
RSVP: <b>Online at http://owasp-brisbane.eventbrite.com</b>
+
''Close:'' Session is expected to be completed by 7:30pm.  
  
<br>
+
''RSVP:'' There are limited seats. Please RSVP at http://owasp-brisbane.eventbrite.com
<br>
+
  
  
 +
There will be a social gathering at a local hostelry afterwards. Everyone is welcome to attend!
  
 
==== Brisbane OWASP Chapter Leaders  ====
 
==== Brisbane OWASP Chapter Leaders  ====
  
The chapter leader is [mailto:anne.luk@gmail.com Anne Luk], [mailto:wade@bindshell.net Wade Alcorn], and [mailto:owasp@moiler.com Glyn Geoghagen] __NOTOC__ <headertabs />  
+
The chapter leaders are [mailto:anne.luk@owasp.org Anne Luk], [mailto:wade@bindshell.net Wade Alcorn], [mailto:glyng@owasp.org Glyn Geoghegan] and [mailto:djorm@redhat.com David Jorm] __NOTOC__ <headertabs />
  
 
[[Category:Australia]]
 
[[Category:Australia]]

Latest revision as of 00:29, 25 March 2014

OWASP Brisbane

Welcome to the Brisbane chapter homepage. The chapter leaders are Anne Luk, Wade Alcorn, Glyn Geoghegan and David Jorm
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG

funds to OWASP earmarked for Brisbane.

Local News

Presenters and Presentations

We are forever looking for volunteers to present at the chapter meetings, so if you've seen something interesting or you have something to say, please let us know.

Often, when we approach potential presenters, we tend to get the following response – “I don’t think my topic is interesting enough”. We just want to stress that as long as the topic is security related – we’re all ears! We’re just a bunch of nice people wanting to learn/share our knowledge of the security domain. So if you would like to present or know of someone that does, please contact us.

Presentations must be vendor agnostic (no selling of products or services), and please review the Speaker Agreement linked above.

Chapter Meetings

Next Brisbane Chapter Meeting - Tuesday April 1, 2014

We've got Robert Winkel presenting in April's chapter meeting on the topic "Lock Picking".

Robert has 20+ years of experience in the information security and intelligence fields. He is the Director of Saltbush Assurance, an Australian firm that performs penetration testing, digital forensics and security code reviews for government and industry both local and worldwide. Robert has developed and presented training courses around the world on topics that include penetration testing, web application vulnerability assessment, wireless penetration testing, Open Source Intelligence (OSINT), protocol reverse-engineering and lock picking.

Robert is a certified GPEN and PCI-DSS QSA, and has dabbled in a Double Bachelor in Computer Science / Communications and Electronic Engineering. He has also attained a Masters in Information Technology and a Masters in Electrical Engineering.

Robert’s interest in lock picking came from a merger of his love for mechanical puzzles and security.

He has been involved in the Ruxcon lock picking event for many years, has recently spoken at the inaugural CrikeyCon in Brisbane, and has also run events at WAHCKon and Kiwicon.


Venue: Red Hat Offices, Level 1, 193 North Quay, Brisbane.

Time: 5:30pm for a 6pm start. Lifts to Level 1 will be locked after 6pm. Please arrive before then!

Date: Tuesday 1st April

Close: Session is expected to be completed by 7:30pm.

RSVP: There are limited seats. Please RSVP at http://owasp-brisbane.eventbrite.com


There will be a social gathering at a local hostelry afterwards. Everyone is welcome to attend!

Brisbane OWASP Chapter Leaders

The chapter leaders are Anne Luk, Wade Alcorn, Glyn Geoghegan and David Jorm