Difference between revisions of "Category:OWASP Video"

From OWASP
Jump to: navigation, search
m (Videos)
(23 intermediate revisions by 8 users not shown)
Line 1: Line 1:
== Modelo de Auditoría de sistemas:  ==
 
  
Éste es un modelo universal para securizar en un alto grado de seguridad al sistema operativo.
+
== Welcome to the OWASP Video Collection ==
  
#Sistema de cifrado congelado: Mantiene en secreto la ubicación del archivo del sistema, previniendo ataques de tipo monitoreo de redes.  
+
OWASP attempts to make videos of presentations made by our members and at our conferences concerning application security whenever possible. The slides for most of these presentations are available, linked to the conference agendas (please link them if possible!).
#OpenVAS: Línea de comandos para cifrar- descifrar el protocolo TCP/Ip
+
#Filtro Web: Previene intrusiones a través de puertos inseguros
+
#Clam Antivirus: Previene, detecta y corrige virus informático
+
  
<br>
+
{{Social Media Links}}
  
{| border="1" cellspacing="1" cellpadding="1" width="200" align="center"
+
===OWASP AppSec Video Tutorial Series w/ Jerry Hoff===
|-
+
OWASP Appsec Tutorial Series [https://www.owasp.org/index.php/OWASP_Appsec_Tutorial_Series Click Here]
| Clam Antivirus
+
{| border="1" cellspacing="1" cellpadding="1" width="200" align="center"
+
|-
+
| Filtro Web
+
{| border="1" cellspacing="1" cellpadding="1" width="200" align="center"
+
|-
+
| OpenVAS
+
{| border="1" cellspacing="1" cellpadding="1" width="200" align="center"
+
|-
+
| Sistema de Cifrado Congelado
+
|}
+
  
|}
+
=== OWASP AppSecUSA 2012 Conference ===
 +
[http://videos.2012.appsecusa.org/ Video]
  
|}
+
=== OWASP AppSecUSA 2011 Conference ===
 +
[http://2011.appsecusa.org/schedule.html#slides_video Videos and Slides]
  
|}
+
=== OWASP Summit 2011 ===
 +
OWASP Summit 2011 Vimeo videos are available at
 +
* [http://vimeo.com/channels/owaspsummit http://vimeo.com/channels/owaspsummit].
 +
* http://www.vimeo.com/25335824
 +
* [http://www.youtube.com/watch?v=GRWCgbZF3_g Chapter Leader Session]
 +
* [http://www.youtube.com/watch?v=O0eD-CeQld4 Browser Security]
 +
* [http://www.youtube.com/watch?v=ZB2JM4xgtBQ ESAPI]
 +
* [http://www.youtube.com/watch?v=w6nuPCxCyC8 Governance Session #1]
 +
* [http://www.youtube.com/watch?v=6HnA3NY7gR0 Governance Session #2]
 +
* [http://www.youtube.com/watch?v=VKrxVTenV7I Mobile Security]
 +
* [http://www.youtube.com/watch?v=RStrwZGgz0U Wrap Up Session #1]
 +
* [http://www.youtube.com/watch?v=_pV8RvaBIfg Wrap Up Session #2]
  
== Descripción softwares de auditoría  ==
+
===OWASP Appsec DC 2010 Conference ===
 +
OWASP Appsec DC 2010 [http://vimeo.com/groups/asdc10/videos/sort:plays Click Here]
  
*El sistema de cifrado http://truecrypt.org cifra el núcleo del sistema operativo y los discos lógicos impidiendo ataques espía.
+
===OWASP USA 2010 Conference ===
 +
OWASP USA 2010 [http://vimeo.com/user4863863/videos/sort:plays Click Here]
  
*Los comandos shell http://openvas.org sirven para analizar protocolos de red, detección de virus y cifrado del protocolo IpV4-6
+
===OWASP EU 2010 Conference===
 +
OWASP Stockholm Sweden 2010 [http://www.owasp.org/index.php/OWASP_AppSec_Research_2010_-_Stockholm,_Sweden#tab=June_23 Click Here] and [http://www.owasp.org/index.php/OWASP_AppSec_Research_2010_-_Stockholm,_Sweden#tab=June_24 Click Here] 
  
*El filtro web http://freenetproject.org es una técnica que reemplaza al Firewall, discriminando puertos inseguros, ahorrando tiempo de procesamiento en el núcleo del sistema.
+
=== OWASP FROC 2010 Conference ===
 +
FROC 2010 - [http://www.owasp.org/index.php/Front_Range_OWASP_Conference_2010#tab=Agenda Click Here]
  
*Clamwin.com es un software de código abierto, no usa computación en la nube y tiene una GUI que detecta virus en línea http://sourceforge.net/projects/clamsentinel
+
=== OWASP USA 2009 Conference===
 +
APPSEC DC 2009 - [http://www.owasp.org/index.php/OWASP_AppSec_DC_2009_Schedule#tab=Talks_11.2F12 Click Here]
  
== Macroinformática  ==
+
=== OWASP AppSecEMEA 2009 Conference===
 +
OWASP EU 2009 - [http://www.owasp.org/index.php/OWASP_AppSec_Europe_2009_-_Poland#tab=Conference_-_May_13 Here] and [http://www.owasp.org/index.php/OWASP_AppSec_Europe_2009_-_Poland#tab=Conference_-_May_14 Here] 
  
La macroinformática comprende eficiencia, seguridad y naturaleza. La eficacia de un sistema operativo se mide por la interacción hombre-máquina, sintetizando aplicaciones minimalistas y ejecutándolas nuestro sistema operativo procesará los datos eficientemente, ejemplos:  
+
=== OWASP Israel 2008 ===
 +
[https://www.owasp.org/index.php/OWASP_Israel_2008_Conference_at_the_Interdisciplinary_Center_Herzliya_(IDC) Click Here]
  
*Transmisión cifrada: Cliente e-mail con GnuPG
+
=== OWASP AppSecUSA 2008 Conference===
 +
[http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference Click Here]
  
http://fellowship.fsfe.org  
+
=== OWASP SnowFROC ===
 +
;[http://www.owasp.org/index.php/Front_Range_OWASP_Conference_2009#Agenda_and_Presentations:_5_March_2009  OWASP SnowFROC from Denver, CO 2009]
  
*Sistema de cifrado: Cifra y descifra texto plano, imágenes, etc..
+
=== OWASP Minneapolis/St. Paul (OWASP MSP) ===
  
#ftp://ftp.gnupg.org/gcrypt/binary/gnupg-w32cli-1.4.11.exe
+
Presentations from the [[Minneapolis St Paul | OWASP Minneapolis-St. Paul (OWASP MSP) chapter]] events hosted in the Twin Cities area of Minnesota are now on their own page. Please visit [[OWASPMSP_Videos]] page for links to them. Some of the presenters include Pravir Chandra, Bruce Schneier, Jeremiah Grossman, Ryan Barnett, and many others.
#http://cryptophane.googlecode.com/files/cryptophane-0.7.0.exe
+
  
*Ruby: Lenguaje de programación experimental
+
=== Black Hat 2006 ===
  
http://ruby-lang.org
+
'''From Black Hat 2006:'''
  
*J2re1.3.1_20: Ejecutable de objetos interactivos o applets
+
;[http://video.google.com/videoplay?docid=941077664562737284&q=owasp Dinis Cruz @ BlackHat 2006 with FSTV]
 +
:Dinis Cruz, leader of the OWASP.NET project joins us to talk about .NET, web security tools, the future of OWASP, and Open Source Software. OWASP - 30 min - Aug 30, 2006
  
http://java.sun.com/products/archive/j2se/1.3.1_20/index.html
+
=== AppSec Washington 2005 ===
  
*Escritorio: Gestor de ventanas X11
+
'''From the [[AppSec_Washington_2005/Agenda | 2nd U.S. OWASP Conference held Oct 11-12, 2005]] - Day 1:'''
  
http://windowmaker.info
+
;[http://video.google.com/videoplay?docid=-2481289516847680871&q=owasp OWASP_Intro_DaveWichers_Key_JoeJarzombek_RonRoss.mp4]
 +
:OWASP Intro: Dave Wichers - Key Note Day 1: Joe Jarzombek - Dir. of Software Assurance - DHS - Software Assurance: Considerations for Advancing a National Strategy to Secure Cyberspace & Ron Ross -FISMA Project Lead - NIST - Status of the Federal Information Security Management Act (FISMA) Project. OWASP - 2 hr 7 min - Oct 11, 2005
  
*Gnuzilla: Navegador seguro y de uso libre
+
;[http://video.google.com/videoplay?docid=3853779542023264815&q=owasp OWASP_JackDanahy_The_Business_Case_for_Software_Security_Assurance.mp4]
 +
:OWASP Jack Danahy - The Business Case for Software Security Assurance. OWASP - 1 hr 2 min - Oct 11, 2005
  
http://code.google.com/p/iceweaselwindows/downloads/list
+
;[http://video.google.com/videoplay?docid=5758230888370998733&q=owasp OWASP_ArianEvans_Tools_SurveyProject.mp4]
 +
:OWASP Arian Evans - The OWASP Tools Survey Project. OWASP - 1 hr 18 min - Oct 11, 2005
  
*Gnupdf: Visor de formato de texto universal pdf
+
;[http://video.google.com/videoplay?docid=-2492965730809426450&q=owasp OWASP_DinizCruz_Rooting_the_CLR.mp4]
 +
:OWASP Diniz Cruz - Rooting the CLR. OWASP - 1 hr 22 min - Oct 11, 2005
  
http://blog.kowalczyk.info/software/sumatrapdf
+
;[http://video.google.com/videoplay?docid=-5233500471539001436&q=owasp OWASP_PaulBlack_RickKuhn.mp4]
 +
:OWASP Paul Black - NIST - Developing a Reference Dataset & Rick Kuhn - NIST - Software Fault Interactions. OWASP - 1 hr 9 min - Oct 11, 2005
  
*Gnuflash: Jugador alternativo a flash player
+
;[http://video.google.com/videoplay?docid=4473926180612118549&q=owasp OWASP_AlexSmolen_Application_Logic_Defense.mp4]
 +
:OWASP Alex Smolen - Application Logic Defense. OWASP - 36 min - Oct 11, 2005
  
http://gnu.org/software/gnash
+
;[http://video.google.com/videoplay?docid=4379894308228900017&q=owasp OWASP_DanielCuthbert_Evolution_WebAppPenTest.mp4]
 +
:OWASP Daniel Cuthbert - OWASP Testing Guide Lead - The Evolution Web App Pen Testing. OWASP - 1 hr 11 min - Oct 11, 2005
  
*Zinf: Reproductor de audio
+
'''The [[AppSec_Washington_2005/Agenda | 2nd U.S. OWASP Conference]] Day 2:'''
  
http://zinf.org
+
;[http://video.google.com/videoplay?docid=-9110574247136866679&q=owasp OWASP_IraWinkler_Secrets_of_Superspies.mp4]
 +
:OWASP Ira Winkler - Keynote Day 2: Secrets of Superspies & Jeremy Poteet - In the Line of Fire: Defending Highly Visible Targets. OWASP - 2 hr 2 min - Oct 12, 2005
  
*Informática forense: Análisis de datos ocultos en el disco duro
+
;[http://video.google.com/videoplay?docid=-5332911124544076749&q=owasp OWASP_JeffWilliams_OWASP_Guide_and_Membership.mp4]
 +
:OWASP Jeff Williams - OWASP Development Guide and OWASP Membership Plan. OWASP - 1 hr 12 min - Oct 12, 2005
  
http://sleuthkit.org
+
;[http://video.google.com/videoplay?docid=7947858567235952851&q=owasp OWASP_DinizCruz_DotNet_Tools_Project.mp4]
 +
:OWASP Diniz Cruz - The .Net Tools Project. OWASP - 1 hr 15 min - Oct 12, 2005
  
*Compresor: Comprime datos sobreescribiendo bytes repetidos
+
;[http://video.google.com/videoplay?docid=2018648061521175729&q=owasp OWASP_MattFisher_WormsNowTargetingWebApps.mp4]
 +
:OWASP Matt Fisher - Worms Now Targeting Web Applications. OWASP - 49 min - Oct 12, 2005
  
http://peazip.sourceforge.net
+
;[http://video.google.com/videoplay?docid=8437304318271455155&q=owasp OWASP_RoganDawes_AdvancedFeaturesofWebScarab.mp4]
 +
:OWASP Rogan Dawes - Advanced Features of OWASP WebScarab. OWASP - 1 hr 24 min - Oct 12, 2005
  
*Ftp: Gestor de descarga de archivos
+
;[http://video.google.com/videoplay?docid=-2492965730809426450&q=owasp OWASP_JohnSteven_Building_a_Scalable_Software_Security_Practice.mp4]
 +
:OWASP John Steven - Building a Scalable Software Security Practice. OWASP - 1 hr 19 min - Oct 12, 2005
  
http://dfast.sourceforge.net
+
;[http://video.google.com/videoplay?docid=-1807054604513842127&q=owasp OWASP_GunnerPeterson_IntegratingIdentityServicesintoWebApps.mp4]
 
+
:OWASP Gunnar Peterson - Integrating Identity Services into Web Apps. OWASP - 35 min - Oct 12, 2005
*AntiKeylogger: Neutraliza el seguimiento de escritorios remotos (Monitoring)
+
 
+
http://psmantikeyloger.sourceforge.net
+
 
+
*Password manager: Gestión de contraseñas
+
 
+
http://passwordsafe.sourceforge.net
+
 
+
*Limpiador de disco: Borra archivos innecesrios del sistema
+
 
+
http://bleachbit.sourceforge.net
+
 
+
*Desfragmentador: Reordena los archivos del disco duro, generando espacio virtual
+
 
+
http://kessels.com/jkdefrag
+
 
+
*X11: Gestor de ventanas, reemplazo de escritorio Xwindow's
+
 
+
http://bb4win.org
+
 
+
*Open Hardware: Hardware construído por la comunidad Linux
+
 
+
http://open-pc.com
+
 
+
*Open WRT: Firmware libre para configurar transmisión de Internet
+
 
+
http://openwrt.org
+
 
+
*Gnu- Linux: Sistema operativo universal
+
 
+
http://gnewsense.org
+
 
+
== Biocriptoseguridad ==: Es la unión de la biología, criptografía y hacking ético para formar una defensa stándar contra virus complejos.
+
 
+
Implementación de la biocriptoseguridad informática:
+
 
+
#Amplificar la banda ancha
+
#Optimizar (limpiar- modificar) el sistema operativo
+
#Desfragmentar los discos lógicos
+
#Ocultar el sistema operativo
+
#Configurar antivirus
+
#Limpiar y desfragmentar
+
#Congelar
+
 
+
*Sistema inmune._ Defensa biológica natural contra infecciones como virus http://immunet.com
+
 
+
*Criptografía._ Método de escritura oculta por caractes, números y letras:—{H}/gJa¢K¡Ng÷752%\*)A>¡#(W|a— http://diskcryptor.net
+
 
+
*Hacking ético._ Auditoría de sistemas informáticos que preserva la integridad de los datos.
+
 
+
Congelador: Mantiene el equilibrio en la integridad de los datos, el sistema operativo, red , memoria ram, ciclos de CPU, espacio en disco duro e incidencias de malware
+
 
+
*http://code.google.com/p/hzr312001/downloads/detail?name=Deep%20systemze%20Standard%20Version%206.51.020.2725.rar&amp;can=2&amp;q= (para Window's)
+
*http://sourceforge.net/projects/lethe (para GNU/Linux)
+
 
+
<br>Auditoría de virus cifrado._ Un criptovirus se oculta tras un algoritmo de criptografía, generalmente es híbrido simétrico-asimétrico con una extensión de 1700bit's, burla los escáneres antivirus con la aleatoriedad de cifrado, facilitando la expansión de las botnet's. La solución es crear un sistema operativo transparente, anonimizarlo y usar herramientas de cifrado stándar de uso libre:
+
 
+
*Gnupg: Sirve para cifrar mensajes de correo electrónico http://gpg4win.org/download.html
+
 
+
*Open Secure Shell: Ofuscador TcpIp, protege el túnel de comunicación digital cifrando la Ip. http://openvas.org
+
 
+
*Red protegida: DNS libre http://namespace.org/switch
+
 
+
*Criptosistema simétrico: Encapsula el disco duro, incluyendo el sistema operativo,usando algoritmo Twofish http://truecrypt.org/downloads.php
+
 
+
*Proxy cifrado: Autenticación de usuario anónimo http://torproject.org
+
 
+
Energías renovables._ Son energías adquiridas por medios naturales: hidrógeno, aire, sol que disminuyen la toxicidad de las emisiones de Co2 en el medio ambiente, impulsando políticas ecologistas contribuímos a preservar el ecosistema. Ejm: Usando paneles solares fotovoltaicos.
+

Revision as of 17:01, 11 April 2013

Contents

Welcome to the OWASP Video Collection

OWASP attempts to make videos of presentations made by our members and at our conferences concerning application security whenever possible. The slides for most of these presentations are available, linked to the conference agendas (please link them if possible!).


OWASP AppSec Video Tutorial Series w/ Jerry Hoff

OWASP Appsec Tutorial Series Click Here

OWASP AppSecUSA 2012 Conference

Video

OWASP AppSecUSA 2011 Conference

Videos and Slides

OWASP Summit 2011

OWASP Summit 2011 Vimeo videos are available at

OWASP Appsec DC 2010 Conference

OWASP Appsec DC 2010 Click Here

OWASP USA 2010 Conference

OWASP USA 2010 Click Here

OWASP EU 2010 Conference

OWASP Stockholm Sweden 2010 Click Here and Click Here

OWASP FROC 2010 Conference

FROC 2010 - Click Here

OWASP USA 2009 Conference

APPSEC DC 2009 - Click Here

OWASP AppSecEMEA 2009 Conference

OWASP EU 2009 - Here and Here

OWASP Israel 2008

Click Here

OWASP AppSecUSA 2008 Conference

Click Here

OWASP SnowFROC

OWASP SnowFROC from Denver, CO 2009

OWASP Minneapolis/St. Paul (OWASP MSP)

Presentations from the OWASP Minneapolis-St. Paul (OWASP MSP) chapter events hosted in the Twin Cities area of Minnesota are now on their own page. Please visit OWASPMSP_Videos page for links to them. Some of the presenters include Pravir Chandra, Bruce Schneier, Jeremiah Grossman, Ryan Barnett, and many others.

Black Hat 2006

From Black Hat 2006:

Dinis Cruz @ BlackHat 2006 with FSTV
Dinis Cruz, leader of the OWASP.NET project joins us to talk about .NET, web security tools, the future of OWASP, and Open Source Software. OWASP - 30 min - Aug 30, 2006

AppSec Washington 2005

From the 2nd U.S. OWASP Conference held Oct 11-12, 2005 - Day 1:

OWASP_Intro_DaveWichers_Key_JoeJarzombek_RonRoss.mp4
OWASP Intro: Dave Wichers - Key Note Day 1: Joe Jarzombek - Dir. of Software Assurance - DHS - Software Assurance: Considerations for Advancing a National Strategy to Secure Cyberspace & Ron Ross -FISMA Project Lead - NIST - Status of the Federal Information Security Management Act (FISMA) Project. OWASP - 2 hr 7 min - Oct 11, 2005
OWASP_JackDanahy_The_Business_Case_for_Software_Security_Assurance.mp4
OWASP Jack Danahy - The Business Case for Software Security Assurance. OWASP - 1 hr 2 min - Oct 11, 2005
OWASP_ArianEvans_Tools_SurveyProject.mp4
OWASP Arian Evans - The OWASP Tools Survey Project. OWASP - 1 hr 18 min - Oct 11, 2005
OWASP_DinizCruz_Rooting_the_CLR.mp4
OWASP Diniz Cruz - Rooting the CLR. OWASP - 1 hr 22 min - Oct 11, 2005
OWASP_PaulBlack_RickKuhn.mp4
OWASP Paul Black - NIST - Developing a Reference Dataset & Rick Kuhn - NIST - Software Fault Interactions. OWASP - 1 hr 9 min - Oct 11, 2005
OWASP_AlexSmolen_Application_Logic_Defense.mp4
OWASP Alex Smolen - Application Logic Defense. OWASP - 36 min - Oct 11, 2005
OWASP_DanielCuthbert_Evolution_WebAppPenTest.mp4
OWASP Daniel Cuthbert - OWASP Testing Guide Lead - The Evolution Web App Pen Testing. OWASP - 1 hr 11 min - Oct 11, 2005

The 2nd U.S. OWASP Conference Day 2:

OWASP_IraWinkler_Secrets_of_Superspies.mp4
OWASP Ira Winkler - Keynote Day 2: Secrets of Superspies & Jeremy Poteet - In the Line of Fire: Defending Highly Visible Targets. OWASP - 2 hr 2 min - Oct 12, 2005
OWASP_JeffWilliams_OWASP_Guide_and_Membership.mp4
OWASP Jeff Williams - OWASP Development Guide and OWASP Membership Plan. OWASP - 1 hr 12 min - Oct 12, 2005
OWASP_DinizCruz_DotNet_Tools_Project.mp4
OWASP Diniz Cruz - The .Net Tools Project. OWASP - 1 hr 15 min - Oct 12, 2005
OWASP_MattFisher_WormsNowTargetingWebApps.mp4
OWASP Matt Fisher - Worms Now Targeting Web Applications. OWASP - 49 min - Oct 12, 2005
OWASP_RoganDawes_AdvancedFeaturesofWebScarab.mp4
OWASP Rogan Dawes - Advanced Features of OWASP WebScarab. OWASP - 1 hr 24 min - Oct 12, 2005
OWASP_JohnSteven_Building_a_Scalable_Software_Security_Practice.mp4
OWASP John Steven - Building a Scalable Software Security Practice. OWASP - 1 hr 19 min - Oct 12, 2005
OWASP_GunnerPeterson_IntegratingIdentityServicesintoWebApps.mp4
OWASP Gunnar Peterson - Integrating Identity Services into Web Apps. OWASP - 35 min - Oct 12, 2005

Pages in category "OWASP Video"

This category contains only the following page.