London/Training/OWASP projects and resources you can use TODAY

From OWASP
Revision as of 09:57, 19 April 2010 by Paulo Coimbra (Talk | contribs)

Jump to: navigation, search

Training - May, 28th, 2010

COURSE
OWASP projects and resources you can use TODAY
Overview & Goal
 
  • Apart from OWASP's Top 10, most OWASP Projects are not widely used and understood. In most cases this is not due to lack of quality and usefulness of those Document & Tool projects, but due to a lack of understanding of where they fit in an Enterprise's security ecosystem or in the Web Application Development Life-cycle.
  • This course aims to change that by providing a selection of mature and enterprise ready projects together with practical examples of how to use them.
  • The course will be very practical where demonstration and hands-on exercises will be provided for the tools covered.
  • If you are interested in participating in the hands on portion of the course, please bring a laptop.

 

Date Venue & Directions
May, 28th, 2010 Lloyds TSB, 5th Floor Seminar Room, Red Lion Court, London SE1 9EQ. Note that the Lloyds TSB building is not well signposted, but is located on the Thames between the Financial Times building (at Southwark Bridge) and the Anchor pub. Closest tubes are London Bridge (walk west along the river) and Mansion House (cross Southwark Bridge).
Price & Registration
This Course is FREE for OWASP Members. Registration is mandatory.
If you are not an OWASP member as of yet please consider becoming one - $50/USD 12 month term for individual supporters.
[Not open as of yet - Course Registration] OWASP Membership (sign now)


COURSE'S MODULES DETAILS
Time Module Trainer Presentation Overview & Goal
   09h00 (30m) Guided tour of OWASP Projects Dinis Cruz [http:// (To be linked)] See details and Trainer's notes


   09h30 (90m) OWASP Top 10 Fabio Cerullo OWASP Top 10 See details and Trainer's notes


   11h00 (15m) Coffee Break


   11h15 (45m) OWASP Testing Guide TBD Testing Guide - PPT File See details and Trainer's notes


   12h00 (20m) OWASP WebScarab Project Colin Watson [http:// (To be linked)] See details and Trainer's notes


   12h20 (20m) OWASP Code Crawler Project Alessio Marziali (Project Leader) [http:// (To be linked)] See details and Trainer's notes


   12h40 (20m) OWASP DirBuster Project James Fisher (Project Leader) [http:// (To be linked)] See details and Trainer's notes


   13h00 (60m) Lunch


   14h00 (20m) OWASP WebGoat Project Justin Clarke [http:// (To be linked)] See details and Trainer's notes


   14h20 (30m) OWASP ESAPI Fabio Cerullo [http:// (To be linked)] See details and Trainer's notes


   14h50 (20m) OWASP Software Assurance Maturity Model Justin Clarke SAMM - PPT File See details and Trainer's notes


   15h10 (20m) Coffee Break


   15h30 (90m) OWASP Code Review Project Eoin Keary (Project Leader) [http:// (To be linked)] See details and Trainer's notes


   17h00 (30m) OWASP O2 Platform Dinis Cruz (Project Leader) [http:// (To be linked)] See details and Trainer's notes


Latest News


UPDATES
 

 


Training - April, 16th, 2010 (Closed)

COURSE
OWASP projects and resources you can use TODAY
Overview & Goal
 
  • Apart from OWASP's Top 10, most OWASP Projects are not widely used and understood. In most cases this is not due to lack of quality and usefulness of those Document & Tool projects, but due to a lack of understanding of where they fit in an Enterprise's security ecosystem or in the Web Application Development Life-cycle.
  • This course aims to change that by providing a selection of mature and enterprise ready projects together with practical examples of how to use them.
  • The course will be very practical where demonstration and hands-on exercises will be provided for the tools covered.
  • If you are interested in participating in the hands on portion of the course, please bring a laptop.

 

Date Venue & Directions
April, 16th, 2010 BA Headquarters (Waterside near Heathrow). British Airways plc, Speedbird Way, Harmondworth, UB7 0GA. Buses from Terminal 5 to Waterside. Visitor car parking passes available.Canteen also available at lunchtime.
  • NOTE 1: Anyone intending to travel on the staff buses (See Timetable) MUST have a hardcopy of an letter with their full name as this will need to be shown to the bus driver to allow them to travel - To claim this authorization letter please contact OWASP Project Manager.
  • NOTE 2: Car travellers must Drive into the VISITORS lane and stop at the security post. Your car registration & name will be checked against the list (hence you must provide these to us beforehand) and you'll be directed to the visitors car park. Please state you are staying all day. Make your way to reception and ask for Amanda Warren (x 85025 or mobile number: 07808 717410). You will then be issued with a pass & escorted to the meeting room.
Price & Registration
This Course is FREE for OWASP Members. Registration is mandatory.
If you are not an OWASP member as of yet please consider becoming one - $50/USD 12 month term for individual supporters.
[Closed - Course Registration] OWASP Membership (sign now)


COURSE'S MODULES DETAILS
Time Module Trainer Presentation Overview & Goal
   09h00 (30m) Guided tour of OWASP Projects Dinis Cruz Tour of OWASP’s projects See details and Trainer's notes


   09h30 (45m) OWASP Top 10 Colin Watson OWASP Top 10 rc1 - PDF File See details and Trainer's notes


   10h15 (15m) Coffee Break


   10h30 (02h) OWASP Testing Guide Matteo Meucci (Project Leader) Testing Guide - PPT File See details and Trainer's notes


   12h30 (30m) OWASP WebScarab Project Colin Watson WebScarab Demonstration See details and Trainer's notes


   13h00 (60m) Lunch


   14h00 (80m) OWASP WebGoat Project Justin Clarke WebGoat v5 Presentation See details and Trainer's notes


   15h20 (30m) OWASP ESAPI Dinis Cruz OWASP ESAPI - PPT File See details and Trainer's notes


   15h50 (10m) Coffee Break


   16h00 (30m) OWASP Software Assurance Maturity Model Justin Clarke SAMM - PPT File See details and Trainer's notes


   16h30 (30m) OWASP Code Review Project Dinis Cruz OWASP Code Review - PPT File See details and Trainer's notes


   17h00 (30m) OWASP O2 Platform Dinis Cruz (Project Leader) What is the OWASP O2 Platform See details and Trainer's notes


Pictures & Videos

MEDIA FILES
007.JPG

OWASP Internals

Training Concept

We are proposing a Chapters driven model with local Chapter organization in which the courses are free for OWASP members, the contents are OWASP projects focused and the costs are supported by a mix of funding i.e. local chapter budget, external sponsorship, trainers sponsorship i.e. trip and/or accommodation paid by themselves and local chapter members’ sponsorship i.e. taking trainers in as guests.

Training Methodologies
  • Course Evaluation Form - PDF and Word Files
Sponsorship Opportunities
London Training Specifics
FAQ Section
  • Why are these Training Courses OWASP members only?