Difference between revisions of "NYC"

From OWASP
Jump to: navigation, search
m
(OWASP New York City | Northern New Jersey)
 
(71 intermediate revisions by 4 users not shown)
Line 1: Line 1:
= OWASP NYC =
+
== OWASP New York City | Northern New Jersey ==
<center>[[Image:Trustwave_banner_ad_Sept_18,_2012.png|link=https://www.trustwave.com/application-security/]]</center>
+
  
<h2>[http://www.meetup.com/OWASPNYCMETRO https://www.owasp.org/images/8/82/Meetup_logo3.jpg] [http://www.meetup.com/OWASPNYCMETRO New York City Chapter] - [http://www.meetup.com/OWASPNYCMETRO Click Here More Info]</h2>
+
Chapter Leaders
  
<hr>
+
Tom Brennan
<h2>OWASP NYC Training March 13th and 14th </h2>
+
  
 +
Evin Hernandez
  
<h3> Application Cryptanalysis Made Easy (1 Day Training)</h3>
+
2017 Appointed Organizers - [https://www.meetup.com/owaspnycnj/members/?op=leaders Click Here]
  
Use of cryptography permeates today's computing infrastructures. While few programmers attempt to implement sophisticated cryptosystems, many unwittingly develop simple protocols in every day applications without adequate knowledge of how cryptographic primitives should be combined. In this training we explore several techniques for analyzing and breaking the kinds of cryptographic protocols which are commonly found in modern applications.
+
== Participation ==
 +
OWASP Foundation ([https://docs.google.com/a/owasp.org/presentation/d/10wi1EWFCPZwCpkB6qZaBNN8mR2XfQs8sLxcj9SCsP6c/edit?usp=sharing Overview Slides]) is a professional association of [[Membership | global members]] and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the [[Chapter_Leader_Handbook]].  As a [[About_OWASP | 501(c)(3)]] non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a <b>SPEAKER</b> at ANY OWASP Chapter in the world simply review the [[Speaker_Agreement | speaker agreement]] and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.
  
Attendees will first be presented with a brief review of cryptographic primitives and their uses, followed by an introduction of several techniques to analyze cryptographic systems in a black-box manner.  In each case, the discussion will describe how programmers can avoid making the common mistakes that allow these attacks to succeed.
+
[[Category:OWASP Chapter]]
  
Register Online to Secure Your Seat http://www.cvent.com/d/3cq429 Space is Limited! Course syllabus: https://docs.google.com/folder/d/0B-IjCXl19haHSFR6NXJTdk5uTE0/edit
+
== Upcoming Events 2017 ==
  
<h3> Hack Your Own Code: Advanced Training for Developers (2 Day Training Course)</h3>
+
The local chapter hosts many meetings, events, seminars, training and virtual sessions. Click below to participate in the next one by RSVP'ing in advance of the event.
 +
<h2>[https://www.meetup.com/owaspnycnj/ https://www.owasp.org/images/8/82/Meetup_logo3.jpg] [https://www.meetup.com/nymjcsc/ New York City | New Jersey Schedule of Events] - [https://www.meetup.com/nymjcsc/ Click Here More Info] </h2>
  
This class provides developers an exciting chance to hone their programming skills while also learning to exploit common web vulnerabilities. Unlike most training, this will not use static demos based on pre-canned source code. Students will program small parts of a larger application during the class’s lab periods. After the component has been written, students will review the code for the vulnerability being focused on in the lab. Vulnerable code will be run on a class-accessible server while the instructor guides students through exploiting the vulnerabilities. After the vulnerability is exploited, students will be shown how their own code can be fixed (if it was vulnerable) and the best way to prevent the flaw in the first place.
+
Please note that venues typically have building security and may have several hundred people in attendance. Due to this fact, please ensure that you register with your first name and last name or you may be refused entry to the facility by the building. in NYC and New Jersey do require you to register with your first and last name or you may be refused entry to the building.
 
+
This full process will be performed for all major code vulnerabilities in the OWASP Top Ten. Exploitation and patching labs (but not programming) will be held for other vulnerabilities, including logic flaws that are hard to represent on the Top Ten. Several labs will feature prizes for the students that first find or exploit the targeted vulnerability. Environments and examples will be setup for all major platforms requested by pre-registered students. Students should bring a laptop with them, preferably with VMWare Player already installed. A virtual machine based on the OWASP Live Boot CD will be provided for lab work. The virtual machine will include development tools, but students should feel free to bring their favorite programs too.
+
 
+
Register Online to Secure Your Seat http://www.cvent.com/d/3cq429 Space is Limited! Course syllabus: https://docs.google.com/folder/d/0B-IjCXl19haHSFR6NXJTdk5uTE0/edit
+
 
+
<h3> Securing Mobile Devices and Applications (2 Day Training Course)</h3>
+
 
+
Mobile applications enable new threats and attacks which introduce significant risks to the enterprise, and many custom applications contain significant vulnerabilities that are unknown to the team that developed them. Considering the number of mobile applications available in the Google Play and Apple AppStore is nearing 1.5 million and vulnerabilities are skyrocketing it is imperative to perform typical application security practices. But, how is mobile different?
+
 
+
This two-day, hands-on course enables students to understand how easily mobile devices and applications can be successfully attacked. They will learn how to identify, avoid and remediate common vulnerabilities by walking through a threat analysis and learning critical security areas such as those identified in the OWASP Top Ten Mobile Risks and Controls. Using state-of-the-art testing tools, students will learn how to secure mobile devices across the enterprise. Students will be able to choose from iOS or Android hands-on labs throughout the course, while they learn how easily the bad guy can compromise applications and the data they contain.
+
 
+
Register Online to Secure Your Seat http://www.cvent.com/d/3cq429 Space is Limited! Course syllabus: https://docs.google.com/folder/d/0B-IjCXl19haHSFR6NXJTdk5uTE0/edit
+
 
+
***
+
 
+
Pricing:
+
 
+
1 Day Course: $750 / 2 Day Course: $1,500
+
 
+
***
+
 
+
<hr>
+
Who are the active chapter members that are helping to build a robust chapter in 2012?
+
 
+
NYC = http://www.meetup.com/OWASP-NYC/members/?op=leaders
+
 
+
<hr>
+
  
 
[[Category:OWASP Chapter]]
 
[[Category:OWASP Chapter]]
 +
[[Category:United States]]
 
[[Category:New York]]
 
[[Category:New York]]
 +
 +
Ready to become a member? [[Image:Join_Now_BlueIcon.JPG|75px|link=https://myowasp.force.com/]]  -- Local Sponsorship opportunities [https://www.owasp.org/images/b/ba/NYC_Chapter_Sponsorship.pdf Click Here]

Latest revision as of 21:00, 23 January 2017

OWASP New York City | Northern New Jersey

Chapter Leaders

Tom Brennan

Evin Hernandez

2017 Appointed Organizers - Click Here

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Upcoming Events 2017

The local chapter hosts many meetings, events, seminars, training and virtual sessions. Click below to participate in the next one by RSVP'ing in advance of the event.

Meetup_logo3.jpg New York City | New Jersey Schedule of Events - Click Here More Info

Please note that venues typically have building security and may have several hundred people in attendance. Due to this fact, please ensure that you register with your first name and last name or you may be refused entry to the facility by the building. in NYC and New Jersey do require you to register with your first and last name or you may be refused entry to the building.

Ready to become a member? Join Now BlueIcon.JPG -- Local Sponsorship opportunities Click Here