Difference between revisions of "Detroit"

From OWASP
Jump to: navigation, search
(6 intermediate revisions by one user not shown)
Line 3: Line 3:
 
== Local News ==
 
== Local News ==
  
'''Meeting Location'''
+
=== Meetings ===
  
Our first meeting will be held on March 8th, 2012. We will have more details to share soon! We invite anyone within the Southeast MI area to attend.
+
Our next meeting is on '''December 13th'''. That meeting will again be held at Liberty Center One, 4815 Delemere Avenue, Royal Oak starting at 7pm.
  
'''Social Media'''
+
This month's speaker is Kevin Poniatowski who will be presenting on integrating security into SDLC processes, for both small and large development teams:
  
To keep up with the Detroit Chapter, please subscribe to our mailing list above. You can also follow us on Twitter ([https://twitter.com/#!/OWASPDetroit @OWASPDetroit]).
+
Adding security into your SDLC can be an intimidating task for a development team that is asking, "Where do we start?". This talk will introduce some of the most beneficial security practices that can be added to an SDLC, how they can be implemented within a large or small development team, and describe their time footprint within a development schedule.
  
== Meetings ==
+
Kevin Poniatowski began his information technology career by working for over eleven years as an application developer in the defense industry.  Focusing on safety of flight issues for pilots and navigators within our armed forces led him into the application security field where he has spent the last five years teaching application security to developers, testers, and project managers from some of the largest organizations in the world. Kevin is currently the Director of Instructor led Services for Safelight Security.
  
Our first meeting, held on March 8th, 2012, was a great success! Our next meeting will be on July 12th. That meeting will be held at Liberty Center One, 4815 Delemere Avenue, Royal Oak.
+
'''Update:''' The video from the Dec 13th meeting is available at [http://www.youtube.com/watch?v=jH3TfYvraOQ http://www.youtube.com/watch?v=jH3TfYvraOQ]
 +
 +
=== Previous Meetings ===
 +
 
 +
September 13th:
 +
 
 +
* Introductions
 +
* Chapter and OWASP Global Updates
 +
* Presentation: Covert Channels and Controls in .NET, J Wolfgang Goerlich
 +
* Discussion and Questions
 +
 
 +
'''Video:''' [http://www.youtube.com/watch?v=BgpwNeLg3aI Covert Channels and Controls in .NET]
 +
 
 +
June 14th Agenda:
 +
 
 +
* Introductions
 +
* Chapter and OWASP Global Updates
 +
* Presentation: SQL Methadone: A guide on not becoming the web equivalent of a gutter punk, Brad McMahon
 +
* Discussion and Questions
  
 
March 8th Agenda:
 
March 8th Agenda:
Line 25: Line 43:
  
 
'''Slides:''' [http://michsec.org/wp-content/uploads/2012/03/OWASP-XSS.pptx XSS Files PPTX]
 
'''Slides:''' [http://michsec.org/wp-content/uploads/2012/03/OWASP-XSS.pptx XSS Files PPTX]
 +
 +
===Social Media===
 +
 +
To keep up with the Detroit Chapter, please subscribe to our mailing list above. You can also follow us on Twitter ([https://twitter.com/#!/OWASPDetroit @OWASPDetroit]).
  
 
[[Category:OWASP Chapter]]
 
[[Category:OWASP Chapter]]
 
[[Category:Michigan]]
 
[[Category:Michigan]]

Revision as of 09:22, 14 December 2012

Contents

OWASP Detroit

Welcome to the Detroit chapter homepage. The chapter leaders are Josh Little and J. Wolfgang Goerlich.
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG

Local News

Meetings

Our next meeting is on December 13th. That meeting will again be held at Liberty Center One, 4815 Delemere Avenue, Royal Oak starting at 7pm.

This month's speaker is Kevin Poniatowski who will be presenting on integrating security into SDLC processes, for both small and large development teams:

Adding security into your SDLC can be an intimidating task for a development team that is asking, "Where do we start?". This talk will introduce some of the most beneficial security practices that can be added to an SDLC, how they can be implemented within a large or small development team, and describe their time footprint within a development schedule.

Kevin Poniatowski began his information technology career by working for over eleven years as an application developer in the defense industry. Focusing on safety of flight issues for pilots and navigators within our armed forces led him into the application security field where he has spent the last five years teaching application security to developers, testers, and project managers from some of the largest organizations in the world. Kevin is currently the Director of Instructor led Services for Safelight Security.

Update: The video from the Dec 13th meeting is available at http://www.youtube.com/watch?v=jH3TfYvraOQ

Previous Meetings

September 13th:

  • Introductions
  • Chapter and OWASP Global Updates
  • Presentation: Covert Channels and Controls in .NET, J Wolfgang Goerlich
  • Discussion and Questions

Video: Covert Channels and Controls in .NET

June 14th Agenda:

  • Introductions
  • Chapter and OWASP Global Updates
  • Presentation: SQL Methadone: A guide on not becoming the web equivalent of a gutter punk, Brad McMahon
  • Discussion and Questions

March 8th Agenda:

  • Introductions
  • Overview of OWASP & Chapter Direction
  • Presentation: Finding, Exploiting, and Eliminating XSS Flaws, Josh Little
  • Discussion and Questions

Video: XSS Files Video <-- Note: The audio did not come out that clear in this recording. We apologize for that.

Slides: XSS Files PPTX

Social Media

To keep up with the Detroit Chapter, please subscribe to our mailing list above. You can also follow us on Twitter (@OWASPDetroit).