Difference between revisions of "Los Angeles/2011 Meetings"

From OWASP
Jump to: navigation, search
m (moved 2011 Meetings to Los Angeles/2011 Meetings: Organizational clarity)
 
(18 intermediate revisions by 2 users not shown)
Line 1: Line 1:
== '''Topic: NoSQL Security'''  ==
+
== [[Los_Angeles/2011_Meetings/December_14|December 14, 2011]] ==
  
'''Speaker: Bryan Sullivan''' 
+
Great networking reception at Dail Grill in downtown Los Angeles.
  
[[Image:BryanSullivan.JPG]]
+
== [[Los_Angeles/2011_Meetings/November_30|November 30, 2011]] ==
 +
Speaker:  Mani Tadayon and Tin Zaw<br>
 +
Topic: Cucumber and friends: tools for security that matters<br>
 +
Presentation: http://bit.ly/securitythatmatters<br>
  
Bryan Sullivan is a Senior Security Researcher with Adobe Systems, where he focuses on cloud security issues. Prior to Adobe, he was a program manager on Microsoft's Security Development Lifecycle team, and a development manager at HP, where he helped to design HP's vulnerability scanning tools WebInspect and DevInspect.<br><br>Bryan has spoken at security industry conferences such as Black Hat, RSA Conference, BlueHat and TechEd on topics such as RIA architecture, REST, cryptography, denial-of-service defense, URL rewriting, and applying secure development processes to Agile projects. He was the author of the MSDN Magazine column Security Briefs, and is the coauthor of the books Ajax Security (Addison-Wesley, 2007) and the upcoming Secure Web Applications, A Beginner's Guide (McGraw-Hill, 2011).
+
Speaker:  Neil Matatall<br>
 +
Topic: passw3rd: friends don't let friends store passwords in source code<br>
 +
<!--Presentation: [[Media:Gray,_the_new_black.pptx‎|Gray, the new Black pptx]]<br>-->
  
'''Abstract: NoSQL Security'''<br>
+
Meeting Sponsor: AlgoSec<br>
  
NoSQL databases are rapidly gaining popularity, especially for use in distributed, high-availability cloud services. But are we making the same mistakes with NoSQL in the childhood of the cloud that we made with SQL in the childhood of the web? This talk will examine some general security issues that come with emphasizing the Availability aspect of Consistency/Availability/Partition-tolerance, and we'll also look at some specific issues with popular NoSQL databases such as MongoDB and Cassandra.
 
  
== '''Sponsors:'''  ==
+
== [[Los_Angeles/2011_Meetings/October_26|October 26, 2011]] ==
  
Business Partner Solutions
+
Speaker:  Muhammad Omar Khan<br>
 +
Topic: Time Based SQL Injections <br>
 +
<!--Presentation: [[Media:Gray,_the_new_black.pptx‎|Gray, the new Black pptx]]<br>-->
  
<br>BPS has experience with fortune 500, City, and State Government clients. BPS has working technical knowledge in the following areas of security and compliance:
+
Speaker: Jim Manico<br>
 +
Topic: Scalable Web AppSec<br>
 +
<!--Presentation: [[Media:Gray,_the_new_black.pptx‎|Gray, the new Black pptx]]<br>-->
  
Audit trail monitoring and planning<br>Business continuity planning and disaster recovery<br>Configuration management<br>Data classification<br>Incident response planning<br>Policy development<br>Risk analysis and acceptance<br>Forensics<br>Forensic tools and methodology<br>Secure software development lifecycle (SDLC)<br>Vulnerability management and remediation<br>Project management<br><br><br>
+
Meeting Sponsor: WhiteHat Security <br>
  
<br>
+
 
 +
== [[Los_Angeles/2011_Meetings/September_28|September 28, 2011]] ==
 +
 
 +
Speaker:  Jim Manico<br>
 +
Topic: Deep XSS Defense<br>
 +
<!--Presentation: [[Media:Gray,_the_new_black.pptx‎|Gray, the new Black pptx]]<br>-->
 +
Meeting Sponsor: PKWARE
 +
 
 +
 
 +
== [[Los_Angeles/2011_Meetings/August_24|August 24, 2011]] ==
 +
 
 +
Speaker 1:  Dr. Dan Manson<br>
 +
Topic 1: Cyber Challenge Program<br>
 +
<!--Presentation: [[Media:Gray,_the_new_black.pptx‎|Gray, the new Black pptx]]<br>-->
 +
Speaker 2:  Jason Taylor<br>
 +
Topic 2: OWASP Exams Project<br>
 +
<!--Presentation: [[Media:Gray,_the_new_black.pptx‎|Gray, the new Black pptx]]<br>-->
 +
Meeting Sponsor: Sprint
 +
 
 +
== July 27, 2011 ==
 +
 
 +
Social hour hosted by OWASP LA<br>
 +
Downtown Daily Grill<br>
 +
Los Angeles, CA
 +
 
 +
 
 +
== [[Los_Angeles/2011_Meetings/June_22|June 22, 2011]] ==
 +
 
 +
Speaker: Brian Chess<br>
 +
Topic: Gray, the new Black: Gray-Box Web Vulnerability Testing<br>
 +
Presentation: [[Media:Gray,_the_new_black.pptx‎|Gray, the new Black pptx]]<br>
 +
Meeting Sponsor: Safenet
 +
 
 +
 
 +
== [[Los_Angeles/2011_Meetings/May_25|May 25, 2011]] ==
 +
 
 +
Speaker: Justin Collins<br>
 +
Topic: Automated Detection of Security Flaws in Ruby on Rails Code<br>
 +
Presentation: [[Media:Justin_Collins-OWASPLA-Brakeman.pdf| Brakeman Presentation]]<br>
 +
Meeting Sponsor:  En Pointe Technologies
 +
 
 +
 
 +
== [[Los_Angeles/2011_Meetings/April_27|April 27, 2011]]  ==
 +
 
 +
Speaker: Bryan Sullivan<br>
 +
Topic: NoSQL Security<br>
 +
Meeting Sponsor: Business Partner Solutions
 +
 
 +
 
 +
== [[Los_Angeles/2011_Meetings/March_16|March 16, 2011]]  ==
 +
 
 +
Speaker: Liam O Murchu<br>
 +
Topic: STUXNET<br>
 +
Meeting Sponsors: Evolve Technology Group, Websense
 +
 
 +
 
 +
== [[Los_Angeles/2011_Meetings/February 23|February 23, 2011]]  ==
 +
 
 +
Speaker: Scott Sutherland<br>
 +
Topic: Database Security in the Real World<br>
 +
Meeting Sponsor: NetSpi
 +
 
 +
 
 +
== [[Los_Angeles/2011_Meetings/January_26|January 26, 2011]]  ==
 +
 
 +
Speaker: Samy Kamkar<br>
 +
Topic: Evercookie: the Persistent Cookie<br>
 +
Meeting Sponsor: IBM&nbsp;Rational Software<br>

Latest revision as of 19:26, 10 January 2012

Contents

December 14, 2011

Great networking reception at Dail Grill in downtown Los Angeles.

November 30, 2011

Speaker: Mani Tadayon and Tin Zaw
Topic: Cucumber and friends: tools for security that matters
Presentation: http://bit.ly/securitythatmatters

Speaker: Neil Matatall
Topic: passw3rd: friends don't let friends store passwords in source code

Meeting Sponsor: AlgoSec


October 26, 2011

Speaker: Muhammad Omar Khan
Topic: Time Based SQL Injections

Speaker: Jim Manico
Topic: Scalable Web AppSec

Meeting Sponsor: WhiteHat Security


September 28, 2011

Speaker: Jim Manico
Topic: Deep XSS Defense
Meeting Sponsor: PKWARE


August 24, 2011

Speaker 1: Dr. Dan Manson
Topic 1: Cyber Challenge Program
Speaker 2: Jason Taylor
Topic 2: OWASP Exams Project
Meeting Sponsor: Sprint

July 27, 2011

Social hour hosted by OWASP LA
Downtown Daily Grill
Los Angeles, CA


June 22, 2011

Speaker: Brian Chess
Topic: Gray, the new Black: Gray-Box Web Vulnerability Testing
Presentation: Gray, the new Black pptx
Meeting Sponsor: Safenet


May 25, 2011

Speaker: Justin Collins
Topic: Automated Detection of Security Flaws in Ruby on Rails Code
Presentation: Brakeman Presentation
Meeting Sponsor: En Pointe Technologies


April 27, 2011

Speaker: Bryan Sullivan
Topic: NoSQL Security
Meeting Sponsor: Business Partner Solutions


March 16, 2011

Speaker: Liam O Murchu
Topic: STUXNET
Meeting Sponsors: Evolve Technology Group, Websense


February 23, 2011

Speaker: Scott Sutherland
Topic: Database Security in the Real World
Meeting Sponsor: NetSpi


January 26, 2011

Speaker: Samy Kamkar
Topic: Evercookie: the Persistent Cookie
Meeting Sponsor: IBM Rational Software