Difference between revisions of "Category:OWASP Video"

From OWASP
Jump to: navigation, search
m
(20 intermediate revisions by 8 users not shown)
Line 1: Line 1:
== Modelo de Auditoría de sistemas: ==
+
<div style="font-size:7pt;">
 +
<div align="center">
  
Éste es un modelo universal para securizar en un alto grado de seguridad al sistema operativo.
+
<openx></openx>
  
#Sistema de cifrado congelado: Mantiene en secreto la ubicación del archivo del sistema, previniendo ataques de tipo monitoreo de redes.  
+
<b>Disclaimer: Banner ads are not endorsements, and reflect the messages of the advertiser only. | [https://www.owasp.org/index.php/Advertising More Information]</b></div></div>
#OpenVAS: Línea de comandos para cifrar- descifrar el protocolo TCP/Ip
+
#Filtro Web: Previene intrusiones a través de puertos inseguros
+
#Clam Antivirus: Previene, detecta y corrige virus informático
+
  
<br>
+
== Welcome to the OWASP Video Collection ==
  
{| border="1" cellspacing="1" cellpadding="1" width="200" align="center"
+
OWASP attempts to make videos of presentations made by our members and at our conferences concerning application security whenever possible. The slides for most of these presentations are available, linked to the conference agendas (please link them if possible!).
|-
+
| Clam Antivirus
+
{| border="1" cellspacing="1" cellpadding="1" width="200" align="center"
+
|-
+
| Filtro Web
+
{| border="1" cellspacing="1" cellpadding="1" width="200" align="center"
+
|-
+
| OpenVAS
+
{| border="1" cellspacing="1" cellpadding="1" width="200" align="center"
+
|-
+
| Sistema de Cifrado Congelado
+
|}
+
  
|}
+
== Videos ==
 +
{{Social Media Links}}
  
|}
+
=== OWASP AppSecUSA 2012 ===
 +
[http://videos.2012.appsecusa.org/ Video]
  
|}
+
=== OWASP AppSecUSA 2011 ===
 +
[http://2011.appsecusa.org/schedule.html#slides_video Videos and Slides]
  
== Descripción softwares de auditoría  ==
+
=== OWASP Summit 2011 ===
 +
OWASP Summit 2011 Vimeo videos are available at
 +
* [http://vimeo.com/channels/owaspsummit http://vimeo.com/channels/owaspsummit].
 +
* http://www.vimeo.com/25335824
 +
* [http://www.youtube.com/watch?v=GRWCgbZF3_g Chapter Leader Session]
 +
* [http://www.youtube.com/watch?v=O0eD-CeQld4 Browser Security]
 +
* [http://www.youtube.com/watch?v=ZB2JM4xgtBQ ESAPI]
 +
* [http://www.youtube.com/watch?v=w6nuPCxCyC8 Governance Session #1]
 +
* [http://www.youtube.com/watch?v=6HnA3NY7gR0 Governance Session #2]
 +
* [http://www.youtube.com/watch?v=VKrxVTenV7I Mobile Security]
 +
* [http://www.youtube.com/watch?v=RStrwZGgz0U Wrap Up Session #1]
 +
* [http://www.youtube.com/watch?v=_pV8RvaBIfg Wrap Up Session #2]
  
*El sistema de cifrado http://truecrypt.org cifra el núcleo del sistema operativo y los discos lógicos impidiendo ataques espía.
+
===OWASP Appsec Tutorial Series===
 +
OWASP Appsec Tutorial Series [https://www.owasp.org/index.php/OWASP_Appsec_Tutorial_Series Click Here]
  
*Los comandos shell http://openvas.org sirven para analizar protocolos de red, detección de virus y cifrado del protocolo IpV4-6
+
===OWASP Appsec DC 2010===
 +
OWASP Appsec DC 2010 [http://vimeo.com/groups/asdc10/videos/sort:plays Click Here]
  
*El filtro web http://freenetproject.org es una técnica que reemplaza al Firewall, discriminando puertos inseguros, ahorrando tiempo de procesamiento en el núcleo del sistema.
+
===OWASP USA 2010===
 +
OWASP USA 2010 [http://vimeo.com/user4863863/videos/sort:plays Click Here]
  
*Clamwin.com es un software de código abierto, no usa computación en la nube y tiene una GUI que detecta virus en línea http://sourceforge.net/projects/clamsentinel
+
===OWASP EU 2010===
 +
OWASP Stockholm Sweden 2010 [http://www.owasp.org/index.php/OWASP_AppSec_Research_2010_-_Stockholm,_Sweden#tab=June_23 Click Here] and [http://www.owasp.org/index.php/OWASP_AppSec_Research_2010_-_Stockholm,_Sweden#tab=June_24 Click Here] 
  
== Macroinformática  ==
+
=== OWASP FROC 2010 ===
 +
FROC 2010 - [http://www.owasp.org/index.php/Front_Range_OWASP_Conference_2010#tab=Agenda Click Here]
  
La macroinformática comprende eficiencia, seguridad y naturaleza. La eficacia de un sistema operativo se mide por la interacción hombre-máquina, sintetizando aplicaciones minimalistas y ejecutándolas nuestro sistema operativo procesará los datos eficientemente, ejemplos:  
+
=== OWASP USA 2009 ===
 +
APPSEC DC 2009 - [http://www.owasp.org/index.php/OWASP_AppSec_DC_2009_Schedule#tab=Talks_11.2F12 Click Here]
  
*Transmisión cifrada: Cliente e-mail con GnuPG
+
=== OWASP EU ===
 +
OWASP EU 2009 - [http://www.owasp.org/index.php/OWASP_AppSec_Europe_2009_-_Poland#tab=Conference_-_May_13 Here] and [http://www.owasp.org/index.php/OWASP_AppSec_Europe_2009_-_Poland#tab=Conference_-_May_14 Here] 
  
http://fellowship.fsfe.org  
+
=== OWASP Israel 2008 ===
 +
[https://www.owasp.org/index.php/OWASP_Israel_2008_Conference_at_the_Interdisciplinary_Center_Herzliya_(IDC) Click Here]
  
*Sistema de cifrado: Cifra y descifra texto plano, imágenes, etc..
+
=== OWASP USA 2008 ===
 +
[http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference Click Here]
  
#ftp://ftp.gnupg.org/gcrypt/binary/gnupg-w32cli-1.4.11.exe
+
=== SnowFROC ===
#http://cryptophane.googlecode.com/files/cryptophane-0.7.0.exe
+
;[http://www.owasp.org/index.php/Front_Range_OWASP_Conference_2009#Agenda_and_Presentations:_5_March_2009  OWASP SnowFROC from Denver, CO 2009]
  
*Ruby: Lenguaje de programación experimental
+
=== OWASP Minneapolis/St. Paul (OWASP MSP) ===
  
http://ruby-lang.org
+
Presentations from the [[Minneapolis St Paul | OWASP Minneapolis-St. Paul (OWASP MSP) chapter]] events hosted in the Twin Cities area of Minnesota are now on their own page.  Please visit [[OWASPMSP_Videos]] page for links to them.  Some of the presenters include Pravir Chandra, Bruce Schneier, Jeremiah Grossman, Ryan Barnett, and many others.
  
*J2re1.3.1_20: Ejecutable de objetos interactivos o applets
+
=== Black Hat 2006 ===
  
http://java.sun.com/products/archive/j2se/1.3.1_20/index.html
+
'''From Black Hat 2006:'''
  
*Escritorio: Gestor de ventanas X11
+
;[http://video.google.com/videoplay?docid=941077664562737284&q=owasp Dinis Cruz @ BlackHat 2006 with FSTV]
 +
:Dinis Cruz, leader of the OWASP.NET project joins us to talk about .NET, web security tools, the future of OWASP, and Open Source Software. OWASP - 30 min - Aug 30, 2006
  
http://windowmaker.info
+
=== AppSec Washington 2005 ===
  
*Gnuzilla: Navegador seguro y de uso libre
+
'''From the [[AppSec_Washington_2005/Agenda | 2nd U.S. OWASP Conference held Oct 11-12, 2005]] - Day 1:'''
  
http://code.google.com/p/iceweaselwindows/downloads/list
+
;[http://video.google.com/videoplay?docid=-2481289516847680871&q=owasp OWASP_Intro_DaveWichers_Key_JoeJarzombek_RonRoss.mp4]
 +
:OWASP Intro: Dave Wichers - Key Note Day 1: Joe Jarzombek - Dir. of Software Assurance - DHS - Software Assurance: Considerations for Advancing a National Strategy to Secure Cyberspace & Ron Ross -FISMA Project Lead - NIST - Status of the Federal Information Security Management Act (FISMA) Project. OWASP - 2 hr 7 min - Oct 11, 2005
  
*Gnupdf: Visor de formato de texto universal pdf
+
;[http://video.google.com/videoplay?docid=3853779542023264815&q=owasp OWASP_JackDanahy_The_Business_Case_for_Software_Security_Assurance.mp4]
 +
:OWASP Jack Danahy - The Business Case for Software Security Assurance. OWASP - 1 hr 2 min - Oct 11, 2005
  
http://blog.kowalczyk.info/software/sumatrapdf
+
;[http://video.google.com/videoplay?docid=5758230888370998733&q=owasp OWASP_ArianEvans_Tools_SurveyProject.mp4]
 +
:OWASP Arian Evans - The OWASP Tools Survey Project. OWASP - 1 hr 18 min - Oct 11, 2005
  
*Gnuflash: Jugador alternativo a flash player
+
;[http://video.google.com/videoplay?docid=-2492965730809426450&q=owasp OWASP_DinizCruz_Rooting_the_CLR.mp4]
 +
:OWASP Diniz Cruz - Rooting the CLR. OWASP - 1 hr 22 min - Oct 11, 2005
  
http://gnu.org/software/gnash
+
;[http://video.google.com/videoplay?docid=-5233500471539001436&q=owasp OWASP_PaulBlack_RickKuhn.mp4]
 +
:OWASP Paul Black - NIST - Developing a Reference Dataset & Rick Kuhn - NIST - Software Fault Interactions. OWASP - 1 hr 9 min - Oct 11, 2005
  
*Zinf: Reproductor de audio
+
;[http://video.google.com/videoplay?docid=4473926180612118549&q=owasp OWASP_AlexSmolen_Application_Logic_Defense.mp4]
 +
:OWASP Alex Smolen - Application Logic Defense. OWASP - 36 min - Oct 11, 2005
  
http://zinf.org
+
;[http://video.google.com/videoplay?docid=4379894308228900017&q=owasp OWASP_DanielCuthbert_Evolution_WebAppPenTest.mp4]
 +
:OWASP Daniel Cuthbert - OWASP Testing Guide Lead - The Evolution Web App Pen Testing. OWASP - 1 hr 11 min - Oct 11, 2005
  
*Informática forense: Análisis de datos ocultos en el disco duro
+
'''The [[AppSec_Washington_2005/Agenda | 2nd U.S. OWASP Conference]] Day 2:'''
  
http://sleuthkit.org
+
;[http://video.google.com/videoplay?docid=-9110574247136866679&q=owasp OWASP_IraWinkler_Secrets_of_Superspies.mp4]
 +
:OWASP Ira Winkler - Keynote Day 2: Secrets of Superspies & Jeremy Poteet - In the Line of Fire: Defending Highly Visible Targets. OWASP - 2 hr 2 min - Oct 12, 2005
  
*Compresor: Comprime datos sobreescribiendo bytes repetidos
+
;[http://video.google.com/videoplay?docid=-5332911124544076749&q=owasp OWASP_JeffWilliams_OWASP_Guide_and_Membership.mp4]
 +
:OWASP Jeff Williams - OWASP Development Guide and OWASP Membership Plan. OWASP - 1 hr 12 min - Oct 12, 2005
  
http://peazip.sourceforge.net
+
;[http://video.google.com/videoplay?docid=7947858567235952851&q=owasp OWASP_DinizCruz_DotNet_Tools_Project.mp4]
 +
:OWASP Diniz Cruz - The .Net Tools Project. OWASP - 1 hr 15 min - Oct 12, 2005
  
*Ftp: Gestor de descarga de archivos
+
;[http://video.google.com/videoplay?docid=2018648061521175729&q=owasp OWASP_MattFisher_WormsNowTargetingWebApps.mp4]
 +
:OWASP Matt Fisher - Worms Now Targeting Web Applications. OWASP - 49 min - Oct 12, 2005
  
http://dfast.sourceforge.net
+
;[http://video.google.com/videoplay?docid=8437304318271455155&q=owasp OWASP_RoganDawes_AdvancedFeaturesofWebScarab.mp4]
 +
:OWASP Rogan Dawes - Advanced Features of OWASP WebScarab. OWASP - 1 hr 24 min - Oct 12, 2005
  
*AntiKeylogger: Neutraliza el seguimiento de escritorios remotos (Monitoring)
+
;[http://video.google.com/videoplay?docid=-2492965730809426450&q=owasp OWASP_JohnSteven_Building_a_Scalable_Software_Security_Practice.mp4]
 +
:OWASP John Steven - Building a Scalable Software Security Practice. OWASP - 1 hr 19 min - Oct 12, 2005
  
http://psmantikeyloger.sourceforge.net
+
;[http://video.google.com/videoplay?docid=-1807054604513842127&q=owasp OWASP_GunnerPeterson_IntegratingIdentityServicesintoWebApps.mp4]
 
+
:OWASP Gunnar Peterson - Integrating Identity Services into Web Apps. OWASP - 35 min - Oct 12, 2005
*Password manager: Gestión de contraseñas
+
 
+
http://passwordsafe.sourceforge.net
+
 
+
*Limpiador de disco: Borra archivos innecesrios del sistema
+
 
+
http://bleachbit.sourceforge.net
+
 
+
*Desfragmentador: Reordena los archivos del disco duro, generando espacio virtual
+
 
+
http://kessels.com/jkdefrag
+
 
+
*X11: Gestor de ventanas, reemplazo de escritorio Xwindow's
+
 
+
http://bb4win.org
+
 
+
*Open Hardware: Hardware construído por la comunidad Linux
+
 
+
http://open-pc.com
+
 
+
*Open WRT: Firmware libre para configurar transmisión de Internet
+
 
+
http://openwrt.org
+
 
+
*Gnu- Linux: Sistema operativo universal
+
 
+
http://gnewsense.org
+
 
+
== Biocriptoseguridad ==: Es la unión de la biología, criptografía y hacking ético para formar una defensa stándar contra virus complejos.
+
 
+
Implementación de la biocriptoseguridad informática:
+
 
+
#Amplificar la banda ancha
+
#Optimizar (limpiar- modificar) el sistema operativo
+
#Desfragmentar los discos lógicos
+
#Ocultar el sistema operativo
+
#Configurar antivirus
+
#Limpiar y desfragmentar
+
#Congelar
+
 
+
*Sistema inmune._ Defensa biológica natural contra infecciones como virus http://immunet.com
+
 
+
*Criptografía._ Método de escritura oculta por caractes, números y letras:—{H}/gJa¢K¡Ng÷752%\*)A>¡#(W|a— http://diskcryptor.net
+
 
+
*Hacking ético._ Auditoría de sistemas informáticos que preserva la integridad de los datos.
+
 
+
Congelador: Mantiene el equilibrio en la integridad de los datos, el sistema operativo, red , memoria ram, ciclos de CPU, espacio en disco duro e incidencias de malware
+
 
+
*http://code.google.com/p/hzr312001/downloads/detail?name=Deep%20systemze%20Standard%20Version%206.51.020.2725.rar&amp;can=2&amp;q= (para Window's)
+
*http://sourceforge.net/projects/lethe (para GNU/Linux)
+
 
+
<br>Auditoría de virus cifrado._ Un criptovirus se oculta tras un algoritmo de criptografía, generalmente es híbrido simétrico-asimétrico con una extensión de 1700bit's, burla los escáneres antivirus con la aleatoriedad de cifrado, facilitando la expansión de las botnet's. La solución es crear un sistema operativo transparente, anonimizarlo y usar herramientas de cifrado stándar de uso libre:
+
 
+
*Gnupg: Sirve para cifrar mensajes de correo electrónico http://gpg4win.org/download.html
+
 
+
*Open Secure Shell: Ofuscador TcpIp, protege el túnel de comunicación digital cifrando la Ip. http://openvas.org
+
 
+
*Red protegida: DNS libre http://namespace.org/switch
+
 
+
*Criptosistema simétrico: Encapsula el disco duro, incluyendo el sistema operativo,usando algoritmo Twofish http://truecrypt.org/downloads.php
+
 
+
*Proxy cifrado: Autenticación de usuario anónimo http://torproject.org
+
 
+
Energías renovables._ Son energías adquiridas por medios naturales: hidrógeno, aire, sol que disminuyen la toxicidad de las emisiones de Co2 en el medio ambiente, impulsando políticas ecologistas contribuímos a preservar el ecosistema. Ejm: Usando paneles solares fotovoltaicos.
+

Revision as of 18:45, 10 January 2013

<openx></openx>

Disclaimer: Banner ads are not endorsements, and reflect the messages of the advertiser only. | More Information

Contents

Welcome to the OWASP Video Collection

OWASP attempts to make videos of presentations made by our members and at our conferences concerning application security whenever possible. The slides for most of these presentations are available, linked to the conference agendas (please link them if possible!).

Videos


OWASP AppSecUSA 2012

Video

OWASP AppSecUSA 2011

Videos and Slides

OWASP Summit 2011

OWASP Summit 2011 Vimeo videos are available at

OWASP Appsec Tutorial Series

OWASP Appsec Tutorial Series Click Here

OWASP Appsec DC 2010

OWASP Appsec DC 2010 Click Here

OWASP USA 2010

OWASP USA 2010 Click Here

OWASP EU 2010

OWASP Stockholm Sweden 2010 Click Here and Click Here

OWASP FROC 2010

FROC 2010 - Click Here

OWASP USA 2009

APPSEC DC 2009 - Click Here

OWASP EU

OWASP EU 2009 - Here and Here

OWASP Israel 2008

Click Here

OWASP USA 2008

Click Here

SnowFROC

OWASP SnowFROC from Denver, CO 2009

OWASP Minneapolis/St. Paul (OWASP MSP)

Presentations from the OWASP Minneapolis-St. Paul (OWASP MSP) chapter events hosted in the Twin Cities area of Minnesota are now on their own page. Please visit OWASPMSP_Videos page for links to them. Some of the presenters include Pravir Chandra, Bruce Schneier, Jeremiah Grossman, Ryan Barnett, and many others.

Black Hat 2006

From Black Hat 2006:

Dinis Cruz @ BlackHat 2006 with FSTV
Dinis Cruz, leader of the OWASP.NET project joins us to talk about .NET, web security tools, the future of OWASP, and Open Source Software. OWASP - 30 min - Aug 30, 2006

AppSec Washington 2005

From the 2nd U.S. OWASP Conference held Oct 11-12, 2005 - Day 1:

OWASP_Intro_DaveWichers_Key_JoeJarzombek_RonRoss.mp4
OWASP Intro: Dave Wichers - Key Note Day 1: Joe Jarzombek - Dir. of Software Assurance - DHS - Software Assurance: Considerations for Advancing a National Strategy to Secure Cyberspace & Ron Ross -FISMA Project Lead - NIST - Status of the Federal Information Security Management Act (FISMA) Project. OWASP - 2 hr 7 min - Oct 11, 2005
OWASP_JackDanahy_The_Business_Case_for_Software_Security_Assurance.mp4
OWASP Jack Danahy - The Business Case for Software Security Assurance. OWASP - 1 hr 2 min - Oct 11, 2005
OWASP_ArianEvans_Tools_SurveyProject.mp4
OWASP Arian Evans - The OWASP Tools Survey Project. OWASP - 1 hr 18 min - Oct 11, 2005
OWASP_DinizCruz_Rooting_the_CLR.mp4
OWASP Diniz Cruz - Rooting the CLR. OWASP - 1 hr 22 min - Oct 11, 2005
OWASP_PaulBlack_RickKuhn.mp4
OWASP Paul Black - NIST - Developing a Reference Dataset & Rick Kuhn - NIST - Software Fault Interactions. OWASP - 1 hr 9 min - Oct 11, 2005
OWASP_AlexSmolen_Application_Logic_Defense.mp4
OWASP Alex Smolen - Application Logic Defense. OWASP - 36 min - Oct 11, 2005
OWASP_DanielCuthbert_Evolution_WebAppPenTest.mp4
OWASP Daniel Cuthbert - OWASP Testing Guide Lead - The Evolution Web App Pen Testing. OWASP - 1 hr 11 min - Oct 11, 2005

The 2nd U.S. OWASP Conference Day 2:

OWASP_IraWinkler_Secrets_of_Superspies.mp4
OWASP Ira Winkler - Keynote Day 2: Secrets of Superspies & Jeremy Poteet - In the Line of Fire: Defending Highly Visible Targets. OWASP - 2 hr 2 min - Oct 12, 2005
OWASP_JeffWilliams_OWASP_Guide_and_Membership.mp4
OWASP Jeff Williams - OWASP Development Guide and OWASP Membership Plan. OWASP - 1 hr 12 min - Oct 12, 2005
OWASP_DinizCruz_DotNet_Tools_Project.mp4
OWASP Diniz Cruz - The .Net Tools Project. OWASP - 1 hr 15 min - Oct 12, 2005
OWASP_MattFisher_WormsNowTargetingWebApps.mp4
OWASP Matt Fisher - Worms Now Targeting Web Applications. OWASP - 49 min - Oct 12, 2005
OWASP_RoganDawes_AdvancedFeaturesofWebScarab.mp4
OWASP Rogan Dawes - Advanced Features of OWASP WebScarab. OWASP - 1 hr 24 min - Oct 12, 2005
OWASP_JohnSteven_Building_a_Scalable_Software_Security_Practice.mp4
OWASP John Steven - Building a Scalable Software Security Practice. OWASP - 1 hr 19 min - Oct 12, 2005
OWASP_GunnerPeterson_IntegratingIdentityServicesintoWebApps.mp4
OWASP Gunnar Peterson - Integrating Identity Services into Web Apps. OWASP - 35 min - Oct 12, 2005

Pages in category "OWASP Video"

This category contains only the following page.