Difference between revisions of "OWASP Training"

From OWASP
Jump to: navigation, search
(8 intermediate revisions by 4 users not shown)
Line 38: Line 38:
 
| width="200" | [[Image:Banner OWASP Training page.gif|border|center|362x247px]]  
 
| width="200" | [[Image:Banner OWASP Training page.gif|border|center|362x247px]]  
 
| valign="top" |  
 
| valign="top" |  
 +
 +
*[[Montreal Training]]
 +
 
*[http://www.owasp.org/index.php/London/Training/OWASP_projects_and_resources_you_can_use_TODAY#tab=Training_-_April.2C_16th.2C_2010_.28Closed.29 London Training Day], April, 16th, 2010, London, UK
 
*[http://www.owasp.org/index.php/London/Training/OWASP_projects_and_resources_you_can_use_TODAY#tab=Training_-_April.2C_16th.2C_2010_.28Closed.29 London Training Day], April, 16th, 2010, London, UK
  
Line 45: Line 48:
  
 
*[[IBWAS10 Training|IBWAS'10 Training Day]], December, 16th, 2010, Lisbon, Portugal | Part of the [[IBWAS10|2nd OWASP Ibero-American Web Application Security Conference (IBWAS'10)]]  
 
*[[IBWAS10 Training|IBWAS'10 Training Day]], December, 16th, 2010, Lisbon, Portugal | Part of the [[IBWAS10|2nd OWASP Ibero-American Web Application Security Conference (IBWAS'10)]]  
 
== ==
 
  
 
*[http://www.owasp.org/index.php/Ireland/Training/OWASP_projects_and_resources_you_can_use_TODAY Ireland Training Day], March, 11, 2011, Dublin, Ireland
 
*[http://www.owasp.org/index.php/Ireland/Training/OWASP_projects_and_resources_you_can_use_TODAY Ireland Training Day], March, 11, 2011, Dublin, Ireland
  
 
*[http://www.owasp.org/index.php/France/OWASP_projects_and_resources_you_can_use_TODAY France Training Day], 26th April 2011, Paris, France
 
*[http://www.owasp.org/index.php/France/OWASP_projects_and_resources_you_can_use_TODAY France Training Day], 26th April 2011, Paris, France
 +
 +
*[[Greece/Training/OWASP projects and resources you can use TODAY|Greek Chapter Training]], Athens, 25th May, 2011.
 +
 +
*[[LatamTour2011|LatamTour2011]]
 +
 +
----
  
 
*[[NYNJ Training/OWASP Projects and Resources you can use TODAY!|NYNJ Training Day]], 1st Semester 2011 (date tbc), NY, US
 
*[[NYNJ Training/OWASP Projects and Resources you can use TODAY!|NYNJ Training Day]], 1st Semester 2011 (date tbc), NY, US
Line 74: Line 81:
 
'''Click [[OWASP Trainers Database Conditions|here]] for rules and conditions.'''
 
'''Click [[OWASP Trainers Database Conditions|here]] for rules and conditions.'''
  
|}
+
|}  
  
 
=== OWASP Trainers Database ===
 
=== OWASP Trainers Database ===
 
{{Template:OWASP_Trainers_Volunteers/Columns}}
 
{{Template:OWASP_Trainers_Volunteers/Columns}}
 +
{{:OWASP_Trainers/Volunteer_0 | OWASP_Trainers_Volunteers/Row}}
 
{{:OWASP_Trainers/Volunteer_1 | OWASP_Trainers_Volunteers/Row}}
 
{{:OWASP_Trainers/Volunteer_1 | OWASP_Trainers_Volunteers/Row}}
 
{{:OWASP_Trainers/Volunteer_2 | OWASP_Trainers_Volunteers/Row}}
 
{{:OWASP_Trainers/Volunteer_2 | OWASP_Trainers_Volunteers/Row}}
Line 155: Line 163:
  
 
* [[OWASP/Training/Implementation of Enigform for Wordpress|OWASP Enigform (and Jify)]]
 
* [[OWASP/Training/Implementation of Enigform for Wordpress|OWASP Enigform (and Jify)]]
 +
 +
*[[OWASP/Training/OWASP Application Security Verification Standard (ASVS)|OWASP Application Security Verification Standard (ASVS)]]
  
 
|-
 
|-
  
 
| valign="top" colspan="2" |  
 
| valign="top" colspan="2" |  
 +
=== OWASP Appsec Tutorial Series, by [[user:Jerryhoff|Jerry Hoff]] ===
 +
 +
* [http://www.youtube.com/watch?v=CDbWvEwBBxo Episode 1: Appsec Basics]
 +
*[http://www.youtube.com/watch?v=pypTYPaU7mM Episode 2: Injection Attacks]
 +
 +
 
=== Other Training Materials ===
 
=== Other Training Materials ===
  

Revision as of 05:58, 3 February 2014


About

Banner OWASP Training page.gif

OWASP Training - OWASP Projects and Resources you can use TODAY!

The main goal of OWASP Training is to support Local Chapters' training activities in a way that allows us to use a model that, despite specific and punctual adjustments, can be easily replicated and become the main frame for all Chapter-led training events.

Furthermore, we will use the concept “OWASP projects and resources you can use TODAY!

In a nutshell, we are proposing a Chapter’s driven model with Local Chapter organization in which:

  • The courses are free for OWASP members - being that by the time of the training event anyone may become a member if they desire to do so;
  • The contents are OWASP projects focused – to promote the awareness of our Projects and the understanding of how they fit into an Enterprise's security ecosystem or in its Web Application Development Life-cycle;
  • The costs are supported by a mix of funding - local chapter budget, external sponsorship, trainers sponsorship (i.e. trip and/or accommodation paid by themselves) and local chapter members’ sponsorship (i.e. taking trainers in as guests).

If you would like to organize a training event of this sort, please contact me after gathering the following information which will be our starting point:

  • Date of the event;
  • Venue and directions;
  • Course’s details - with regard to the contents, we would suggest that the focus falls into the OWASP Projects with the most quality and Projects being developed by members of your local Chapter.

The role of the Local Chapters in reinforcing visibility of OWASP Projects within the local corporate communities and, by that, in encouraging the use and understanding of our tools and documentation is absolutely invaluable – do get involved!


If you are interested in being part of OWASP's pool of Trainers, check our CALL FOR TRAINERS tab and add your name!

Initiatives

Banner OWASP Training page.gif

Trainers Database - Call for Trainers!

Banner OWASP Training page.gif

CALL FOR TRAINERS - Trainers drive's goal

OWASP is looking for trainers to deliver training under the flag “OWASP projects and resources you can use today”. This is a model of training which is free for OWASP members, delivered by OWASP Leaders (with only travel expenses paid) and covering OWASP modules and/or projects.

If you are an OWASP Leader and would like to be included in OWASP's pool of trainers, this is your chance - add your name and info to the OWASP Trainers / Volunteers Table and be counted!

The role of the Local Chapters in reinforcing visibility of OWASP Projects within the local corporate communities and, by that, in encouraging the use and understanding of our tools and documentation is absolutely invaluable. In this context, the OWASP Training appears as an excellent vehicle to spread the knowledge and the word and that is why this is one of the areas we want to strongly focus on.

Click here for rules and conditions.

OWASP Trainers Database

Trainer Identification, Interests and Location
Name Projects/Modules I would be interested in presenting Projects already presented Current location
view edit Jim Manico @ Secure Coding Projects of Any Kind Hawaii, Airplanes and Hotels Worldwide
view edit Dinis Cruz @ OWASP O2 Platform and anything that moves at OWASP London
view edit Sébastien Gioria @ Top10,OWASP ASVS, OWASP Guide, OWASP Testing Guide France
view edit Michael Scovetta @ OWASP Yasca, OWASP Top 10, OWASP Development Guide Long Island, NY
view edit Eoin Keary @ Code Review Project, Testing Guide Dublin
view edit Sebastien Deleersnyder (Seba) @ Awareness Trainings, OWASP TOP 10, WebGoat, SAMM and SDL, ... N/A Belgium
view edit Venkatesh Jagannathan @ OWASP Top 10, Threat Modeling, Secure Coding Practices/Guidelines Chennai, India
view edit Mateo Martínez @ Webgoat, OWASP Top Ten, ZAP, OpenSAMM N/A Montevideo, Uruguay
view edit Andrew van der Stock @ ASVS, ESAPI for PHP, Ajax, Developer Guide, Top 10 Melbourne, Australia
view edit Marco M. Morana @ Top 10, SAMM, CLASP, Development Guide, Web 2.0, Application Threat Modeling, Secure Coding Guide, Code Review Project, Testing Guide N/A Cincinnati, U.S.A.
view edit James McGovern @ Enterprise Architecture Perspectives on Web Application Security Hartford Connecticut, U.S.A.
view edit Richard Farrell @ OWASP Top 10, Secure Coding or any other application security topic Melbourne, Australia
view edit Talal AlBasha @ OWASP Top 10, Secure Coding Practices,Application Security Verification Standard, Code Review Guide Saudi Arabia
view edit Colin Watson AppSensor, SAMM, Secure SDL, Top Ten, Application Defence, About OWASP London
view edit Martin Knobloch @ SAMM, CLASP Threat Risk Modeing, WebGoat, WebScarab, TopTen, Secure Coding Principles, ESAPI Netherlands
view edit Lucas C. Ferreira @ SAMM, WebGoat, Top Ten, Secure Coding Principles, Guided Tour N/A Brasilia, DF, Brazil
view edit Steven van der Baan @ Top10,OWASP ASVS, WebGoat, WebScarab,Secure Coding Principles, ESAPI N/A Cambridge, UK
view edit Mordecai Kraushar @ OWASP TOP 10, Broken Web Applications N/A New York City
view edit Dhruv Soi @ OWASP Top 10, WebGoat, WebScarab, Secure Coding Guide, Code Review Project, Testing Guide, Threat Modeling, Secure Coding Practices/Guidelines New Delhi, India
view edit Fabio Cerullo @ Top 10, ESAPI, ASVS, Swingset Dublin, Ireland
view edit Petr Zavodsky @ Top Ten, Testing Guide, WebGoat, WebScarab, ESAPI for PHP and JavaScript Czech Republic
view edit Justin Clarke @ Top 10, SAMM, ESAPI, WebGoat, Secure Coding Principles, etc London, UK
view edit Achim Hoffmann @ Top10, OWASP Testing Guide, Broken Web Applications, WAFs München, Germany
view edit Nishi Kumar @ OWASP Top 10
Application Security for Managers and Executives
PCI-DSS and PA-DSS
Security Scanning
N/A Austin, TX
view edit Chandrasekar Umapathy @ Top10,OWASP ASVS, OWASP Guide, OWASP Testing Guide ,Webgoat,PCI-DSS and PA-DSS

Security Scanning

Chennai, India
view edit Simon Bennetts @ OWASP Zed Attack Proxy Project, OWASP Top 10 Manchester, UK
view edit Daniel Brzozowski @ OWASP Top 10, OWASP O2 Platform, OWASP WebScarab-NG and other open source pentest tools London, UK
view edit Ludovic Petit @ WebApp Security and Legal aspects, OWASP Secure Software Contract Annex, OWASP Top 10, CISO Guide, OWASP Mobile Security Project, OWASP Cloud Top 10 Project Paris, France
view edit Gandhi Aryavalli @ OWASP Top 10, WebGoat, WebScarab, Secure Coding Guide, Code Review Project, Testing Guide, Threat Modeling, Secure Coding Practices/Guidelines, Securing Web Applications, Identifying/Mitigating APTs, Next Gen IPS/FW N/A India - BANGALORE
view edit Azzeddine RAMRAMI @ PHP and Java Secure Coding, Threat Modeling, Secure Design Principles, CSFRGuard and ZAP Training Rabat/Casablanca, Morocco and Paris/France

Videos & Pictures

IBWAS'10 Training Day, 16 Dec 2010

MEDIA FILES
P1020167.JPG
P1020168.JPG P1020169.JPG
P1020170.JPG P1020171.JPG
P1020172.JPG P1020173.JPG


Modules and Materials

Banner OWASP Training page.gif

Training Modules

OWASP Appsec Tutorial Series, by Jerry Hoff


Other Training Materials


Videos

IBWAS'10 Training Day sessions, 16th Dec 2010, Lisbon


Library of Links

Banner OWASP Training page.gif
  • Access to the collection of all pages associated to the OWASP Training.


Training Templates

Banner OWASP Training page.gif
  • If you want to organize an OWASP Free Training event, please check out the Training Templates.


Training Logos

MEDIA FILES
PROPOSAL 1ALogo 1A.JPG PROPOSAL 1B - Approved VersionLogo 1B.JPG
PROPOSAL 2Logo 2.JPG PROPOSAL 3Logo 3.JPG
PROPOSAL 4Logo 4.JPG