Difference between revisions of "Louisville"

From OWASP
Jump to: navigation, search
 
(5 intermediate revisions by 2 users not shown)
Line 1: Line 1:
 
{{Chapter Template|chaptername=Louisville|extra=The chapter leaders are: [mailto:curtis.koenig@owasp.org Curtis Koenig], [mailto:cfiske@humana.com Carolyn Fiske],[mailto:hnhaworth@gmail.com Heather Haworth], [mailto:Brian.Blankenship@owasp.com Brian Blankenship], and [mailto:ksullivan31@gmail.com Kristen Sullivan]|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-Louisville|emailarchives=http://lists.owasp.org/pipermail/owasp-Louisville}}
 
{{Chapter Template|chaptername=Louisville|extra=The chapter leaders are: [mailto:curtis.koenig@owasp.org Curtis Koenig], [mailto:cfiske@humana.com Carolyn Fiske],[mailto:hnhaworth@gmail.com Heather Haworth], [mailto:Brian.Blankenship@owasp.com Brian Blankenship], and [mailto:ksullivan31@gmail.com Kristen Sullivan]|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-Louisville|emailarchives=http://lists.owasp.org/pipermail/owasp-Louisville}}
  
<paypal>Louisville</paypal>
 
  
== Upcoming Events ==
 
  
 +
== Upcoming Events ==
 +
 +
'''We will be having our next chapter meeting on August 30th.'''
 +
 +
'''Topic:'''  What you need to know about Open Web Apps and Security
 +
 +
'''Presenter:'''  Mark Goodwin
 +
 +
'''Location:''' Heartland Payment Systems, One Heartland Way, Jeffersonville, IN  47130,  11:30AM - 1:00PM
 +
 +
'''Abstract:''' A brief look at Mozilla's proposed standard for Open Web Apps, how they work and some best practices to follow to ensure yours are secure.
 +
 +
We are very pleased to have another speaker from Mozillia.org at this meeting.  The meeting will be conducted via teleconference.
 +
 +
Mark Goodwin works on application security for Mozilla, creators of the popular Firefox web browser.  At work, Mark works with web applications and browser security. At home, he plays with the security too; web, phone apps, consumer electronics of all sorts.  He also likes to make robots, and tweeting doorbells.  Mark has previously worked on Internet banking, e-commerce, embedded systems and logistics software.
 +
 +
Please join us if you can.  The meeting is free as always.  Water and soft drinks are provided at no cost.  Feel free to bring a lunch if you like.
 +
 +
We hope to see you there!
 +
 +
 +
 
==Past Events==
 
==Past Events==
 
'''Please note: videos of our meetings are below in the presentations sections. We will try to take video of each meeting based on the speaker's permission. Demos may be omitted.'''
 
'''Please note: videos of our meetings are below in the presentations sections. We will try to take video of each meeting based on the speaker's permission. Demos may be omitted.'''
Line 11: Line 31:
 
! Past Events
 
! Past Events
 
|-
 
|-
| '''Nov 11th 2011 , 11:30 AM – 1 PM'''  
+
|  
 +
'''May 14th, 2013 from 06:30-07:30PM'''
 +
 
 +
'''Where:''' LVL1 814 E Broadway  Louisville, KY 40204
 +
 
 +
'''Topic:'''  Blind SQL injection with sqlmap
 +
 
 +
'''Presenter:''' Conrad Reynolds
 +
 
 +
The next meeting will be held at LVL1.  If you are not familiar with it, LVL1 is a "hacker space" (or "maker space" if you prefer) where people get together to work on interesting projects. 
 +
 
 +
Conrad Reynolds is a very talented web application pen tester and excellent presenter which we are excited to have speaking.  In addition to learning about blind SQL injection, stick around if you are so inclined to attend the LVL1 weekly meeting to see what they are all about.  There are a lot of interesting projects going on at LVL1 to check out. 
 +
 
 +
For the OWASP meeting, please plan on arriving between 06:00 - 06:20PM.  Conrad's presentation will be from 06:30 - 07:30.  If you want to stay for the LVL1 meeting, it starts at 08:00PM, and runs for 30 minutes or so.  They also provide a tour of the facility for anyone interested.  Some of the LVL1 members also like to cook, and may have dinner available for donations.
 +
 
 +
This is our first evening timeframe meeting.  We want to accomodate as many as possible, and also wanted to partner up with LVL1 to cross-promote.  We hope to see you there!
 +
 
 +
For more information on LVL1, please check out their site at http://lvl1.org
 +
 
 +
'''February 22nd, 2013'''
 +
 
 +
'''Meeting Location:''' Heartland Payment Systems, 1 Heartland Way ,  Jeffersonville, IN  47130
 +
Presentation:  11:30 – 12:30
 +
 
 +
'''Curtis Koenig''' is the current Chapter Leader for the Louisville OWASP chapter, serving the southern Indiana and Greater Louisville Metro area. He is the Sr. Security Program Manager for Mozilla, the open source project behind such products as Firefox and Thunderbird. Curtis has over 10 years in the security field with knowledge in security operations, incident response, security architecture, malware analysis, and security configuration and design. Curtis is a frequent speaker at conferences for Mozilla.  In his spare time Curtis like to hike and camp with his family and volunteers teaching leadership skills for youth and adults.
 +
 
 +
Topics:  With our chapter being newly rebooted, Curtis covered what OWASP is all about to provide some background for new people, as well as what has changed with OWASP since our last meeting.
 +
Curtis also covered a few open source tools like ZAP, Multilidae, and Web Goat, and how they are used internally at Mozilla.
 +
 
 +
'''Nov 11th 2011 , 11:30 AM – 1 PM'''  
  
 
'''Meeting Location:'''  
 
'''Meeting Location:'''  

Latest revision as of 13:12, 26 August 2013

Contents

OWASP Louisville

Welcome to the Louisville chapter homepage. The chapter leaders are: Curtis Koenig, Carolyn Fiske,Heather Haworth, Brian Blankenship, and Kristen Sullivan
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


Upcoming Events

We will be having our next chapter meeting on August 30th.

Topic: What you need to know about Open Web Apps and Security

Presenter: Mark Goodwin

Location: Heartland Payment Systems, One Heartland Way, Jeffersonville, IN 47130, 11:30AM - 1:00PM

Abstract: A brief look at Mozilla's proposed standard for Open Web Apps, how they work and some best practices to follow to ensure yours are secure.

We are very pleased to have another speaker from Mozillia.org at this meeting. The meeting will be conducted via teleconference.

Mark Goodwin works on application security for Mozilla, creators of the popular Firefox web browser. At work, Mark works with web applications and browser security. At home, he plays with the security too; web, phone apps, consumer electronics of all sorts. He also likes to make robots, and tweeting doorbells. Mark has previously worked on Internet banking, e-commerce, embedded systems and logistics software.

Please join us if you can. The meeting is free as always. Water and soft drinks are provided at no cost. Feel free to bring a lunch if you like.

We hope to see you there!


Past Events

Please note: videos of our meetings are below in the presentations sections. We will try to take video of each meeting based on the speaker's permission. Demos may be omitted.

Louisville OWASP Chapter Board Members

Scope of the board is to discuss and approve local activities, meetings and plans.The board meetings will be announced at a later date. The board currently includes the following members:


Join our group on LinkedIn

http://www.linkedin.com/groups?gid=1917263

Meeting Presentations

We are now trying to video all of our presentations thanks to our newest board member, Adrian Crenshaw! The taping of our meetings will be with the consent of our speakers. Thanks.

March 2009 Presentation

June 2009 Presentation Adrian Crenshaw

September 2009 Presentation Rohyt Belani

January 2010 Presentation Rafal Los

About OWASP

The OWASP Foundation is a 501(c)3 non-profit organization incorporated in the United States of America. OWASP's all-volunteer participants produce free, professional quality, open-source documentation, tools, and standards. Consult the how OWASP works web page for more information about projects and governance.


OWASP Membership

OWASP is an open source project dedicated to finding and fighting the causes of insecure software. All of our materials are free and offered under an open source license, so you do not have to become a member to use them or participate in our projects, mailing lists, conferences, meetings or other activities. On the other hand OWASP rely membership fees and sponsorship to support his activities. There are also unique benefits to become a corporate member such as the use of OWASP materials within your organization without the restrictions associated with the various open source licenses. OWASP individual members also get discounts to security conferences and other perks. For more information consult the OWASP Membership web page.


Articles, Links, etc.

OWASP article with the official SCG release on Darkreading magazine today.

http://www.darkreading.com/security/app-security/showArticle.jhtml?articleID=216402325

The Rocky Road to More Secure Code

http://www.darkreading.com/security/app-security/showArticle.jhtml?articleID=216403548&cid=nl_DR_WEEKLY_T

OWASP Sheds Light on its Security Standards

http://www.sdtimes.com/OWASP_SHEDS_LIGHT_ON_ITS_SECURITY_STANDARDS/About_OWASP_and_SECURITY/33469