Difference between revisions of "Los Angeles"

From OWASP
Jump to: navigation, search
Line 1: Line 1:
 
== Local News  ==
 
== Local News  ==
  
The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a sucess!  
+
The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
  
 
http://www.AppSecUSA.org  
 
http://www.AppSecUSA.org  
Line 11: Line 11:
 
==  ==
 
==  ==
  
== Next&nbsp;Chapter Meeting:&nbsp; Wednesday, December 15, 2010 7:00 P.M. <br>  ==
+
== Next&nbsp;Chapter Meeting:&nbsp; Wednesday, January 26, 2011 7:00 P.M. <br>  ==
  
=== '''Special Holiday Celebration: '''  ===
+
=== '''Note New Meeting Day: 4th Wednesday of Each Month '''  ===
  
We will be meeting in a private room at '''''Tony P's Dockside Grill''''' in Marina Del Rey: <br>4445 Admiralty Way<br>Marina del Rey, CA 90292<br>310-823-4534
+
We will be meeting at our usual place: Symantec Corporation in Culver City: <br>900 Corporate Pointe<br> Culver City, CA 90230<br>(424)750-7000
  
 
  Please RSVP: http://www.eventbrite.com/event/1055199129
 
  Please RSVP: http://www.eventbrite.com/event/1055199129
Line 25: Line 25:
 
----
 
----
  
== '''Topic: Deep Dive into Web Application Scanning'''<br>  ==
+
== '''Topic: Evercookie'''<br>  ==
  
=== '''Speakers:'''<br>  ===
+
== '''Speaker: Samy Kamkar'''<br>  ==
  
'''Brian Robison''', is the Senior Product Manager for McAfee's enterprise vulnerability management solutions. Driven by a relentless desire for customer satisfaction and leveraging over a decade of experience in security and risk management, he is primarily responsible for the strategy and roadmap of McAfee's enterprise vulnerability management offerings, including the web application assessment module. Brian joined McAfee in 2005 as a Technical Marketing Engineer focusing on McAfee's endpoint security products before serving as the Product Manager for McAfee ePolicy Orchestrator 4.0.<br>
+
'''Samy Kamkar is best known for the Samy worm, the first XSS worm, infecting over one million users on MySpace in less than 24 hours. A co-founder of Fonality, Inc., an IP PBX company, Samy previously led the development of all top-level domain name server software and systems for Global Domains International (.ws), and worked for Penn State University developing AI-based psychometric personality assessment software.
  
'''Sven Schrecker''' joined McAfee in 2006 as part of the Preventsys acquisition. He has worked extensively on the integration of Risk &amp; Compliance products into McAfee's ePolicy Orchestrator product. Most recently, he directed the efforts on the total revamp of the Web Assessment Engine for McAfee Vulnerability Manager (formerly known as Foundstone). He is currently architecting cloud-based security technologies.<br>  
+
'''In the past 10 years, Samy has focused on evolutionary and genetic algorithmic software development, Voice over IP software development, automated security and vulnerability research in network security, reverse engineering, and network gaming. When not strapped behind the Matrix, Samy can be found stunt driving, getting involved in local community service projects, and continuing his focus on staying out of jail.''' <br>  
  
=== ''<br>'''''Abstract:'''  ===
 
  
Web applications have exploded to become the point of entry for hackers wanting to do harm. Knowing how and where web applications are vulnerable is key to sustaining goodwill and ensuring a positive experience for those who rely on those applications. Learn tips and techniques for effectively scanning web applications to keep them safe and secure. Hear about best practices from other McAfee customers for web application scanning.<br>  
+
== '''Abstract: Evercookie: the Persistent Cookie'''<br>  ==
 +
''' A javascript API available that produces extremely persistent cookies in a browser. Its goal is to identify a client even    after they've removed standard cookies, Flash cookies Local Shared Objects or LSOs), and others.
 +
 
 +
''' Evercookie accomplishes this by storing the cookie data in several types of storage mechanisms that are available on the local browser. Additionally, if evercookie has found the user has removed any of the types of cookies in question, it recreates them using each mechanism available.
 +
 
 +
''' You can read more about Samy and Evercookie at http://samy.pl/evercookie/
 +
 
 +
<br>  
  
 
<br>  
 
<br>  
Line 41: Line 47:
 
=== '''Sponsor:'''&nbsp;  ===
 
=== '''Sponsor:'''&nbsp;  ===
  
[http://Www.MykonosSoftware.com '''[[Image:Mcafee logo.jpg|359x89px]]'''] <br>  
+
[http://Www..com ''''''] <br>  
  
 
----
 
----
Line 60: Line 66:
 
*[mailto:cassio@owasp.org Cassio Goldschmidt] -- Board Member  
 
*[mailto:cassio@owasp.org Cassio Goldschmidt] -- Board Member  
 
*[mailto:richard.greenberg@owasp.org Richard Greenberg] -- Board Member
 
*[mailto:richard.greenberg@owasp.org Richard Greenberg] -- Board Member
 +
 +
  
 
[[Category:California]]
 
[[Category:California]]

Revision as of 17:34, 3 January 2011

Local News

The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!

http://www.AppSecUSA.org

Check out the videos: http://vimeo.com/user4863863/videos

AppSec Logo.jpg

Next Chapter Meeting:  Wednesday, January 26, 2011 7:00 P.M.

Note New Meeting Day: 4th Wednesday of Each Month

We will be meeting at our usual place: Symantec Corporation in Culver City:
900 Corporate Pointe
Culver City, CA 90230
(424)750-7000

Please RSVP: http://www.eventbrite.com/event/1055199129

funds to OWASP earmarked for Los Angeles.


Topic: Evercookie

Speaker: Samy Kamkar

Samy Kamkar is best known for the Samy worm, the first XSS worm, infecting over one million users on MySpace in less than 24 hours. A co-founder of Fonality, Inc., an IP PBX company, Samy previously led the development of all top-level domain name server software and systems for Global Domains International (.ws), and worked for Penn State University developing AI-based psychometric personality assessment software.

In the past 10 years, Samy has focused on evolutionary and genetic algorithmic software development, Voice over IP software development, automated security and vulnerability research in network security, reverse engineering, and network gaming. When not strapped behind the Matrix, Samy can be found stunt driving, getting involved in local community service projects, and continuing his focus on staying out of jail.


Abstract: Evercookie: the Persistent Cookie

A javascript API available that produces extremely persistent cookies in a browser. Its goal is to identify a client even after they've removed standard cookies, Flash cookies Local Shared Objects or LSOs), and others.

Evercookie accomplishes this by storing the cookie data in several types of storage mechanisms that are available on the local browser. Additionally, if evercookie has found the user has removed any of the types of cookies in question, it recreates them using each mechanism available.

You can read more about Samy and Evercookie at http://samy.pl/evercookie/



Sponsor: 

'



Would you like to speak at an OWASP Los Angeles Meeting?

Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to Tin Zaw. When we accept your talk, it will be required to use the Powerpoint OWASP Template.

Archives of Previous Meetings

A list of previous presentations conducted at the Los Angeles Chapter can be found here.

Los Angeles Chapter