OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.
Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member?
Meeting Location: Bynet building (next to Intel), Har Hozvim - Jerusalem
Our next chapter meeting will be on April 3rd 2013 at 18:00. The agenda is as follows:
Gathering - Refreshments & Opening Remarks: 18:00-18:15
First Lecture 18:15-18:45 Almog Ohayon - DNS Hacks and Attacks
Abstract: DNS is one of the main components of each company and organization. Any damage can easily negatively affect the company's business and availability, thus it is a primary focus of hackers. We will delve into the world of DNS and present the latest DNS attacks from around the world.
Bio: Almog is a communications and information security expert with over two decades of experience. He works at ioptimize.it
Second Lecture 18:50-19:25 Amitay Dan - Car Phone Intelligence
Many hackers try to demonstrate how to attack cars and mobile phones, but like any other battle there is a need for proper Intelligence. This lecture will show how to use systematic flaws like number's floor, hidden numbers and tenders to pinpoint and attack targets. In the close future almost every car will have a cellular modem, thus we need to start creating our defense right now.
Bio: Amitay Dan is a Cyber Intelligence Analyst at Black Cube where he works on strategic and tactical cyber methods from databases, telecommunication and phreaking as well as medical field attack and other interesting areas.
Workshop 19:30-20:30 David Kaplan - Intro to Timing Attacks
Timing Attacks have become popular over the past number of years and have been employed successfully against numerous targets ranging from network-based attacks to games consoles. During the hour-long workshop, participants will have a chance to learn about simple software timing attacks and will attempt to attack vulnerable pieces of software. Participants are required to bring their own laptops. A Virtual Box image with all tools needed for the workshop will be provided in advance of the day (participants are expected to have this installed prior to the start of the workshop). Some experience with Linux – an advantage. Programming experience – a must (Python + gcc will be provided in the VM, any other languages participants should bring necessary software).
The workshop will be delivered in English.
Bio: Security Researcher working for Intel Corp. by day and hacker by night - breaking things for both fun and profit! Previously part of the red team at NDS (now Cisco). Interested in all things security; with a special interest in real-time and Linux-based embedded systems.
Everyone is welcome to join us at our chapter meetings.