Difference between revisions of "Los Angeles"

From OWASP
Jump to: navigation, search
 
(286 intermediate revisions by 2 users not shown)
Line 1: Line 1:
 
== Welcome to the Los Angeles Chapter!  ==
 
== Welcome to the Los Angeles Chapter!  ==
  
 +
[[Image:New_OWASP_LA_Logo-08-2014.jpg|700px|New_OWASP_LA_Logo-08-2014.jpg]]
  
 
=====[http://www.regonline.com/donation_1044369 https://www.owasp.org/images/2/2f/Donatenow.jpg]=====
 
=====[http://www.regonline.com/donation_1044369 https://www.owasp.org/images/2/2f/Donatenow.jpg]=====
Line 8: Line 9:
  
 
Get the following benefits::
 
Get the following benefits::
  - Meet upwards of 60-90 potential new clients
+
  - Meet upwards of 70-110 potential new clients
  - Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site(Image size for logos: gif, jpg or png with a size of 150px X 45px at 72dpi or 55px X 80px at 72dpi)
+
  - Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site
 
  - Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
 
  - Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
 
  - Have a table at local chapter meeting  
 
  - Have a table at local chapter meeting  
Line 17: Line 18:
 
Contact us [[#Los Angeles Chapter]] for general questions relating to sponsorship and donations
 
Contact us [[#Los Angeles Chapter]] for general questions relating to sponsorship and donations
  
== '''Announcements'''  ==
+
== '''Participation'''  ==
  
=== Mark Your Calendars: Silicon Beach OWASP Summit January 27-28, 2014 ===
+
OWASP Foundation is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the [https://www.owasp.org/index.php/Chapter_Leader_Handbook Chapter_Leader_Handbook]. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the [https://www.owasp.org/index.php/Speaker_Agreement speaker agreement] and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related security topic you would like to present on.
  
=== Change in Leadership ===
+
== '''Announcements'''  ==
Tin Zaw has been a strong and effective visionary President and Leader for OWASP Los Angeles for several years. He will remain an active member of the Board, but effective January 1, 2013, Tin will be stepping down as Leader. Richard Greenberg -- Current Board Member, will assume this role going forward. We give our thanks to Tin for his efforts and dedication and look forward to the new year under Richard's leadership.
+
  
 
+
<br>
'''[http://www.meetup.com/OWASP-Los-Angeles/ http://img1.meetupstatic.com/892670376411449149876/img/header/logo.png]
+
===''' [https://www.owasp.org/index.php/WASPY_Awards_2013/ OWASP Los Angeles received the BEST Chapter Leaders award at AppSec USA NY]===
==== We are on Meetup. Please join our community there. ====
+
<br>
 +
'''<h2>[http://www.meetup.com/OWASP-Los-Angeles https://www.owasp.org/images/8/82/Meetup_logo3.jpg] [http://www.meetup.com/OWASP-Los-Angeles] [http://www.meetup.com/owasp-los-angeles OWASP-Los-Angeles '''''We are on Meetup. Please join our community here''.''']</h2>'''
 
===== If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer. =====
 
===== If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer. =====
  
 
===== http://www.meetup.com/OWASP-Los-Angeles/ =====
 
===== http://www.meetup.com/OWASP-Los-Angeles/ =====
  
<br>  
+
<br>
 +
 
 
== '''Become an OWASP Member TODAY'''==
 
== '''Become an OWASP Member TODAY'''==
 
===== Support your LA Chapter: only $50 for the entire year!  =====
 
===== Support your LA Chapter: only $50 for the entire year!  =====
Line 37: Line 39:
 
===== https://www.owasp.org/index.php/Individual_Member  =====
 
===== https://www.owasp.org/index.php/Individual_Member  =====
  
<br>  
+
<br>
  
== '''Next Meeting Wednesday, June 26, 2013 7PM @ Symantec Offices, 900 Corporate Pointe, Culver City, CA 90230'''==  
+
== '''Next OWASP Meeting'''==
 +
'''''**[http://www.meetup.com/OWASP-Los-Angeles/pages/Symantec_Parking_Information/ NOTE: Please review NEW parking rules (@meetup.com) for our monthly meetings at Symantec as of 7/22/2014] **'''''
 +
<br>
  
*''' Topic: I know where you live, I know what you like, I know your email password, and I know your MEID. Why? Because you told me, and you will tell me again in 5 minutes. You are the loudest guy in the room, and your mobile in your pocket is betraying you. I will be talking about the inherit vulnerabilities in mobile devices and how an attacker can exploit them easily. I will show you live demos of exploits and show you how to protect yourself.... if you can. '''
+
== '''[http://www.meetup.com/OWASP-Los-Angeles/events/219134686/ April 29, 2015 7pm at Symantec - Culver City, Ca] '''<br> ==
  
 +
  Speaker: Kunal Anand
  
*''' Speaker: '''MrB0t DoX / Possibly Fed'''
+
  Topic: Beyond the Perimeter: The reality of the new application security landscape
  
Name: Nick #UNRESOLVED QUERY ERROR#
+
'''<u>Abstract:</u>'''
 +
Web applications are dynamic, distributed and perhaps most importantly - the heart of every business in the post-PC era. These applications collect, process and persist information from a myriad of third-party services and users. From an adversary's perspective, the attack surface has never been more tantalizing. Today, a security model entirely predicated on applying controls and pattern-matching at the perimeter is at best a zero-sum game; applying probabilistic logic highlights that pattern matching techniques cannot prevent attacks created by content and SQL fuzzers. This talk will explore an alternative approach to identifying bad actors at runtime via the implementation of language security models to prevent attacks like XSS and SQLi without relying on past definitions and signatures. We’ll cover the tradeoffs, discuss performance and review the challenges of modern application security.
  
Twitter: @MrB0t
+
'''<u>Speaker bio:</u>'''
 +
Kunal is the co-founder and CTO of Prevoty, an application security platform. Prior to that, he was the Director of Technology at the BBC Worldwide, overseeing engineering and operations across the company’s global Digital Entertainment and Gaming initiatives. Kunal also has several years of experience leading security, data and engineering at Gravity, MySpace and NASA’s Jet Propulsion Laboratory. His work has been featured in Wired Magazine and Fast Company. He continues to develop the patented security technologies that power Prevoty’s core products. Kunal received a B.S. from Babson College.
 +
<br>
  
IP: 65.196.127.225 located in Arlington, United State // Probably VPN
+
<div style="text-align: center;">
Coordinates: Thirty-eight degrees fifty-seven minutes six point five seconds north, seventy-seven degrees eight minutes forty-four seconds west
+
Thanks to our sponsor:
  
Country: United States
+
''[[File:Prevoty_Primary_RGB_300.png|200px| center | link=http://www.prevoty.com ]]''
 +
Prevoty delivers powerful real-time Application Security capability for enterprises via its runtime application and monitoring & protection technology. We solve security challenges across the entire application portfolio: Instant remediation of existing vulnerability backlogs (Past), Quicker time-to-market without introducing new vulnerabilities (Present), and Dramatically reduced exposure to zero-day attacks (Future).
 +
</div>
  
City: Langley
 
 
== '''Sponsor: SecureAuth'''==
 
 
[[Image:SecureAuth_logo.png |link=http://www.secureauth.com]]
 
 
SecureAuth offers Mobile, Web, and Identity Access Mgmt, including single signon (SSO) and 2-factor authentication for cloud, mobile, and network applications.
 
  
 
===== Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/ =====
 
===== Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/ =====
Line 68: Line 71:
 
== Would you like to speak at an OWASP Los Angeles Meeting? ==  
 
== Would you like to speak at an OWASP Los Angeles Meeting? ==  
  
Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to [mailto:richard.greenberg@owasp.org Richard Greenberg]. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.  
+
Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to [mailto:richard.greenberg@owasp.org Richard Greenberg] OR [mailto:Stuart.Schwartz@owasp.org Stuart Schwartz]. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.  
  
 
<br>  
 
<br>  
  
== '''Other Events'''  ==
+
== '''Upcoming OWASP Meetings'''  ==
  
*''' [http://www.issala.org/ ISSA LA Monthly Meeting June 19, 2013 at Les Freres Taix French Restaurant, 1911 West Sunset Blvd., LA, Ca 90026  (213) 484-1265] '''
+
== '''[http://www.meetup.com/OWASP-Los-Angeles/events/219134708/ May 27, 2015 7pm at Symantec - Culver City, Ca] '''<br> ==
 +
  Topic: TBD
 +
 
 +
  Speaker: Kelly Fitzgerald
 +
<br>
 +
== '''Other Events'''  ==
 +
<br>
 +
=== '''[http://www.issala.org/event/issa-la-april-lunch-meeting-3/ ISSA-LA April Lunch Meeting - April 15 @ 11:30 am - 1:45 pm]'''===
 +
  Topic: TBD
 +
  Speaker: TBD
 +
<br>
 +
=== '''[http://www.issala.org/event/issa-la-may-lunch-meeting/ ISSA-LA May Lunch Meeting - May 20 @ 11:30 am - 1:45 pm]'''===
 +
  Topic: TBD
 +
  Speaker: TBD
 +
<br>
 +
=== ''' [http://summit.issala.org/  ISSA-LA Seventh Annual Information Security Summit - Thursday, June 4, 2015 7:30am - 6pm @ Los Angeles Convention Center] '''<br> ===
 +
OWASP Special 20% discount code: <b>"SW24OC"</b>
 +
[[Media:ISSA_LA_Summit7_-_OWASP_LA.pdf | ISSA LA SUMMIT7 - OWASP-LA FLYER]]
 +
<br>
 +
=== ''' [http://summit.issala.org/summit-7-training/ ISSA-LA Summit 7 Training – Friday, June 5, 2015 @ Los Angeles Convention Center<br><b>--Classes--</b>  <br><u>Secure Coding Boot Camp</u> by <i>Jim Manico</i>,<br><u>Information Security Boot Camp for IT Professionals</u> by <i>Ed Pagett</i> & <i>Mikhael Felker</i>,<br><u>Build Your Own Cyber Range</u> by <i>Kevin Cardwell</i>] '''<br> ===
  
*''' [http://www.appsecusa.org/2013/ AppSec USA 2013, NYC November 18-21 at Marriott, NYC] '''
 
AppSec USA is a world-class software security conference for technologists, auditors, risk managers, and entrepreneurs, gathering the world's top practitioner, to share the latest research and practices.
 
  
 
== Archives of Previous Meetings  ==
 
== Archives of Previous Meetings  ==
 +
[[Los Angeles/2015 Meetings|2015 Meetings]]
 +
 +
[[Los Angeles/2014 Meetings|2014 Meetings]]
 +
 
[[Los Angeles/2013 Meetings|2013 Meetings]]
 
[[Los Angeles/2013 Meetings|2013 Meetings]]
  
Line 92: Line 116:
 
[[Los Angeles/2008 Meetings|2008 Meetings]]  
 
[[Los Angeles/2008 Meetings|2008 Meetings]]  
  
[[Los Angeles Presentation Archive|List of presentations available from past meetings]] <!--A list of previous presentations conducted at the Los Angeles Chapter can be found [https://www.owasp.org/index.php/Los_Angeles_Previous_Presentations here].-->  
+
[[Los Angeles Presentation Archive | Presentation Archive ]] <!--A list of previous presentations conducted at the Los Angeles Chapter can be found [https://www.owasp.org/index.php/Los_Angeles_Previous_Presentations here].-->  
  
<br>  
+
<br>
  
 
== Los Angeles Chapter  ==
 
== Los Angeles Chapter  ==
Line 101: Line 125:
 
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Board Member
 
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Board Member
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
*[mailto:Kelly.Fitzgerald@owasp.org Kelly Fitzgerald] -- Board Member  
+
*[mailto:mike.francis@owasp.org Mike Francis] -- Board Member  
 
*[mailto:Stuart.Schwartz@owasp.org Stuart Schwartz] -- Board Member  
 
*[mailto:Stuart.Schwartz@owasp.org Stuart Schwartz] -- Board Member  
 +
*[mailto:aaron.guzman@owasp.org Aaron Guzman] -- Board Member
 +
*[mailto:dave.wettenstein@owasp.org Dave Wettenstein] -- Board Member 
  
 
Volunteers: Yev Avidon and Mikhael Felker  <br>
 
Volunteers: Yev Avidon and Mikhael Felker  <br>
Volunteer OWASP Wiki: Mike Francis <br>
+
OWASP Wiki: [mailto:mike.francis@owasp.org Mike Francis] <br>
 
The Los Angeles chapter was founded by Cassio Goldschmidt.  
 
The Los Angeles chapter was founded by Cassio Goldschmidt.  
  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
 +
 +
<!-- === ''' [http://appseccali.org/ OWASP AppSec California Summit January 27-28, 2014-] ===
 +
-->
  
 
Web archive: http://2010.AppSecUSA.org  
 
Web archive: http://2010.AppSecUSA.org  

Latest revision as of 11:48, 27 March 2015

Welcome to the Los Angeles Chapter!

New_OWASP_LA_Logo-08-2014.jpg

Donatenow.jpg

Single Meeting Supporter: Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation enable the OWASP Foundation to continue its mission

Get the following benefits::

- Meet upwards of 70-110 potential new clients
- Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site
- Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
- Have a table at local chapter meeting 
- Promote your products and services
- Bring a raffle prize to gather business cards

Contact us #Los Angeles Chapter for general questions relating to sponsorship and donations

Participation

OWASP Foundation is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related security topic you would like to present on.

Announcements


OWASP Los Angeles received the BEST Chapter Leaders award at AppSec USA NY


Meetup_logo3.jpg [1] OWASP-Los-Angeles We are on Meetup. Please join our community here.

If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer.
http://www.meetup.com/OWASP-Los-Angeles/


Become an OWASP Member TODAY

Support your LA Chapter: only $50 for the entire year!
https://www.owasp.org/index.php/Individual_Member


Next OWASP Meeting

**NOTE: Please review NEW parking rules (@meetup.com) for our monthly meetings at Symantec as of 7/22/2014 **

April 29, 2015 7pm at Symantec - Culver City, Ca

  Speaker: Kunal Anand
  Topic: Beyond the Perimeter: The reality of the new application security landscape

Abstract: Web applications are dynamic, distributed and perhaps most importantly - the heart of every business in the post-PC era. These applications collect, process and persist information from a myriad of third-party services and users. From an adversary's perspective, the attack surface has never been more tantalizing. Today, a security model entirely predicated on applying controls and pattern-matching at the perimeter is at best a zero-sum game; applying probabilistic logic highlights that pattern matching techniques cannot prevent attacks created by content and SQL fuzzers. This talk will explore an alternative approach to identifying bad actors at runtime via the implementation of language security models to prevent attacks like XSS and SQLi without relying on past definitions and signatures. We’ll cover the tradeoffs, discuss performance and review the challenges of modern application security.

Speaker bio: Kunal is the co-founder and CTO of Prevoty, an application security platform. Prior to that, he was the Director of Technology at the BBC Worldwide, overseeing engineering and operations across the company’s global Digital Entertainment and Gaming initiatives. Kunal also has several years of experience leading security, data and engineering at Gravity, MySpace and NASA’s Jet Propulsion Laboratory. His work has been featured in Wired Magazine and Fast Company. He continues to develop the patented security technologies that power Prevoty’s core products. Kunal received a B.S. from Babson College.

Thanks to our sponsor:

Prevoty Primary RGB 300.png

Prevoty delivers powerful real-time Application Security capability for enterprises via its runtime application and monitoring & protection technology. We solve security challenges across the entire application portfolio: Instant remediation of existing vulnerability backlogs (Past), Quicker time-to-market without introducing new vulnerabilities (Present), and Dramatically reduced exposure to zero-day attacks (Future).


Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/


Would you like to speak at an OWASP Los Angeles Meeting?

Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to Richard Greenberg OR Stuart Schwartz. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.


Upcoming OWASP Meetings

May 27, 2015 7pm at Symantec - Culver City, Ca

  Topic: TBD
  Speaker: Kelly Fitzgerald 


Other Events


ISSA-LA April Lunch Meeting - April 15 @ 11:30 am - 1:45 pm

  Topic: TBD
  Speaker: TBD


ISSA-LA May Lunch Meeting - May 20 @ 11:30 am - 1:45 pm

  Topic: TBD
  Speaker: TBD


ISSA-LA Seventh Annual Information Security Summit - Thursday, June 4, 2015 7:30am - 6pm @ Los Angeles Convention Center

OWASP Special 20% discount code: "SW24OC" ISSA LA SUMMIT7 - OWASP-LA FLYER

ISSA-LA Summit 7 Training – Friday, June 5, 2015 @ Los Angeles Convention Center
--Classes--
Secure Coding Boot Camp by Jim Manico,
Information Security Boot Camp for IT Professionals by Ed Pagett & Mikhael Felker,
Build Your Own Cyber Range by Kevin Cardwell

Archives of Previous Meetings

2015 Meetings

2014 Meetings

2013 Meetings

2012 Meetings

2011 Meetings

2010 Meetings

2009 Meetings

2008 Meetings

Presentation Archive


Los Angeles Chapter

Volunteers: Yev Avidon and Mikhael Felker
OWASP Wiki: Mike Francis
The Los Angeles chapter was founded by Cassio Goldschmidt.


The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!


Web archive: http://2010.AppSecUSA.org

Videos: http://vimeo.com/user4863863/videos

AppSec Logo.jpg