Difference between revisions of "Detroit"

From OWASP
Jump to: navigation, search
(2 intermediate revisions by one user not shown)
Line 5: Line 5:
 
=== Meetings ===
 
=== Meetings ===
  
Our next meeting is on '''December 13th'''. That meeting will again be held at Liberty Center One, 4815 Delemere Avenue, Royal Oak starting at 7pm.
+
Our next meeting is on '''March 14th'''. That meeting will again be held at Liberty Center One, 4815 Delemere Avenue, Royal Oak starting at 7pm.
  
This month's speaker is Kevin Poniatowski who will be presention of SDLC processes. More information to come.
+
This month we've got some hot topics that our presenter isn't even able to talk about yet! Will Vandevanter will be presenting on some original research surronding Amazon's S3 services. What he can say is:
 +
 
 +
"This presentation will discuss a recent research project analyzing Amazon S3 Bucket security. It will review common misconfigurations ultimately leading to large amounts of exposed data along with best practice for securing data in the Amazon S3 cloud."
 +
 
 +
Will Vandevanter is a Lead Penetration Tester at Rapid7. He enjoys a good web app pen test and beers of the cold variety. He has previously spoken at Defcon, BSides, SOURCE, and local meetups. He'll be going us over the magic of modern telecommunications. This event WILL NOT be recorded, so see it or regret it.
 +
 
 +
'''Workshop''': On March 16th, as part of the MiSec/OWASP Detroit monthly workshop series, Josh Little will be presenting an hands-on workshop on the basics of web application assessment. Registration is required (and limited), but the workshop itself is free. Registration is available at [http://www.eventbrite.com/event/5680869634 Eventbrite].
 
   
 
   
 
=== Previous Meetings ===
 
=== Previous Meetings ===
 +
 +
December 13th:
 +
 +
* Introductions
 +
* Chapter and OWASP Global Updates
 +
* Presentation: Introducing Security into SDLC, Kevin Poniatowski
 +
* Discussion and Questions
 +
 +
'''Video:''' [http://www.youtube.com/watch?v=jH3TfYvraOQ http://www.youtube.com/watch?v=jH3TfYvraOQ]
  
 
September 13th:
 
September 13th:

Revision as of 11:35, 5 March 2013

Contents

OWASP Detroit

Welcome to the Detroit chapter homepage. The chapter leaders are Josh Little and J. Wolfgang Goerlich.
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG

Local News

Meetings

Our next meeting is on March 14th. That meeting will again be held at Liberty Center One, 4815 Delemere Avenue, Royal Oak starting at 7pm.

This month we've got some hot topics that our presenter isn't even able to talk about yet! Will Vandevanter will be presenting on some original research surronding Amazon's S3 services. What he can say is:

"This presentation will discuss a recent research project analyzing Amazon S3 Bucket security. It will review common misconfigurations ultimately leading to large amounts of exposed data along with best practice for securing data in the Amazon S3 cloud."

Will Vandevanter is a Lead Penetration Tester at Rapid7. He enjoys a good web app pen test and beers of the cold variety. He has previously spoken at Defcon, BSides, SOURCE, and local meetups. He'll be going us over the magic of modern telecommunications. This event WILL NOT be recorded, so see it or regret it.

Workshop: On March 16th, as part of the MiSec/OWASP Detroit monthly workshop series, Josh Little will be presenting an hands-on workshop on the basics of web application assessment. Registration is required (and limited), but the workshop itself is free. Registration is available at Eventbrite.

Previous Meetings

December 13th:

  • Introductions
  • Chapter and OWASP Global Updates
  • Presentation: Introducing Security into SDLC, Kevin Poniatowski
  • Discussion and Questions

Video: http://www.youtube.com/watch?v=jH3TfYvraOQ

September 13th:

  • Introductions
  • Chapter and OWASP Global Updates
  • Presentation: Covert Channels and Controls in .NET, J Wolfgang Goerlich
  • Discussion and Questions

Video: Covert Channels and Controls in .NET

June 14th Agenda:

  • Introductions
  • Chapter and OWASP Global Updates
  • Presentation: SQL Methadone: A guide on not becoming the web equivalent of a gutter punk, Brad McMahon
  • Discussion and Questions

March 8th Agenda:

  • Introductions
  • Overview of OWASP & Chapter Direction
  • Presentation: Finding, Exploiting, and Eliminating XSS Flaws, Josh Little
  • Discussion and Questions

Video: XSS Files Video <-- Note: The audio did not come out that clear in this recording. We apologize for that.

Slides: XSS Files PPTX

Social Media

To keep up with the Detroit Chapter, please subscribe to our mailing list above. You can also follow us on Twitter (@OWASPDetroit).