Difference between revisions of "Orlando"

From OWASP
Jump to: navigation, search
(43 intermediate revisions by 3 users not shown)
Line 1: Line 1:
{{Chapter Template|chaptername=Orlando|extra=The chapter leader is [mailto:tony.turner@owasp.org Tony Turner].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-orlando|emailarchives=http://lists.owasp.org/pipermail/owasp-orlando}}
+
{{Chapter Template|chaptername=Orlando|extra=The chapter was founded in August 2011 by Tony Turner and is currently led by[mailto:tony.turner@owasp.org Tony Turner] and [mailto:bill.riggins@owasp.org Bill Riggins].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-orlando|emailarchives=http://lists.owasp.org/pipermail/owasp-orlando}}
  
=== OWASP Orlando Chapter Meetings ===
+
== Meeting Registration ==  
  
'''Q1 2012 Meeting February 22'''
+
Please register for our meetings at http://owasp-orlando.eventbrite.com
  
== Please Register at http://owasp-orlando.eventbrite.com ==
+
== OWASP Orlando Chapter Meetings ==
  
To bring in the New Year and kick off OWASP Orlando for 2012,  we have some excellent speakers that have agreed to come down to Orlando and help us get things going!
+
'''Q1 2013 Meeting February 13'''
  
   
+
We are kicking off Q1 of 2013 by going back to the basics. Chapter leadership will be delivering coverage of the OWASP Top 10, with examples and ways you can help reduce your exposure. As always we will have our AppSec Trivia Contest and we have some OWASP hardcopy books for Testing Guide, Code Review Guide and Top 10 to give away as prizes.
 +
 
 +
We have also changed our venue to Cloudspace who have graciously allowed us to use their space. UCF Medical College, while a great facility was a bit far for some folks to drive so we hope this will work out better for everyone.
 +
 
 +
6:15 - 6:30 Arrive at Cloudspace (see below)
 +
 
 +
6:30 - 6:45 Welcome and Opening Remarks
 +
 
 +
6:45 - 8:00 "OWASP Top 10" - Tony Turner and William Riggins
 +
 
 +
8:00 - ? After event social gathering - Location TBD
 +
 
 +
We do not currently have a sponsor for this event but refreshments will be provided. If you are interested in sponsoring please contact tony.turner@owasp.org
 +
 
 +
Cloudspace (near UCF Main campus)
 +
11551 University Blvd Suite 2
 +
Orlando, FL 32817
 +
http://goo.gl/45l1b
 +
 
 +
'''Slides available at:''' https://docs.google.com/presentation/d/1ed_DaUzBm22XT4l7w9KArHpjeD6zy4gMSrwOJ5hfE80/edit?usp=sharing
 +
 
 +
== Meeting History ==
 +
 
 +
'''Q3 2012 Meeting September 12'''
  
 
5:45 - 6:00 Arrive
 
5:45 - 6:00 Arrive
  
6:00 - 6:15 Welcome and Opening Remarks
+
6:00 - 6:15 Welcome and Opening Remarks / Appsec Trivia
  
6:15 - 7:00 "OWASP Where are we... Where are we going in 2012" - Tom Brennan
+
6:15 - 7:00 "An Insider's Look: WAF and Identity and Access Management Integration" - Jan Poczobutt, Director of Enterprise ADC & WAF Sales at Barracuda Networks, will provide an inside look at some of the problems with traditional access management implementations and how enterprises can sucessfully overcome these challenges by integrating web application firewall technologies with Identity and Access Management. Learn about best practices, specific use cases and how this new integration translates into operational simplicity for the enterprise.
  
 
7:00 - 7:15 Break
 
7:00 - 7:15 Break
  
7:15 - 8:00 "XSS" - Jim Manico
+
7:15 - 8:00 "Don't Drop the SOAP: Real World Web Service Testing for Web Hackers" - Over the years web services have become an integral part of web and mobile applications. From critical business applications like SAP to mobile applications used by millions, web services are becoming more of an attack vector than ever before. Unfortunately, penetration testers haven't kept up with the popularity of web services, recent advancements in web service technology, testing methodologies and tools. In fact, most of the methodologies and tools currently available either don't work properly, are poorly designed or don't fully test for real world web service vulnerabilities. In addition, environments for testing web service tools and attack techniques have been limited to home grown solutions or worse yet, production environments.
  
8:00 - ? After event social gathering - Location TBD
+
In this presentation Kevin Johnson will discuss the new security issues with web services and discuss an updated web service testing methodology released at defcon 19 last year that will be integrated into the OWASP testing guide, new Metasploit modules and exploits for attacking web services and an open source vulnerable web service for the Samurai-WTF (Web Testing Framework) that can be used by penetration testers to test web service attack tools and techniques.
  
+
*Kevin Johnson is a security consultant and founder of Secure Ideas. Kevin came to security from a development and system administration background. He has many years of experience performing security services for fortune 100 companies, and in his spare time he contributes to a large number of open source security projects. Kevin's involvement in open-source projects is spread across a number of projects and efforts. He is the founder of many different projects and has worked on others. He founded BASE, which is a Web front-end for Snort analysis. He also founded and continues to lead the SamuraiWTF live DVD. This is a live environment focused on Web penetration testing. He also founded Yokoso and Laudanum, which are focused on exploit delivery. Kevin is a certified instructor for SANS and the author of Security 542: Web Application Penetration Testing and Ethical Hacking. He also presents at industry events, including DEFCON and ShmooCon, and for various organizations, like Infragard, ISACA, ISSA, and the University of Florida.
  
Tom Brennan is a Director at Spiderlabs/Trustwave, an OWASP Global Board Member and Chapter Leader for OWASP NY/NJ Metro
+
Twitter: @secureideas
  
Jim Manico is the VP of Security Architecture at Whitehat Security, OWASP Connections Committee Chair, OWASP Podcast Host and Project Manager for the OWASP ESAPI Java project.
+
We do not currently have a sponsor for this event but refreshments will be provided. If you are interested in sponsoring please contact tony.turner@owasp.org
  
 +
University of Central Florida has graciously agreed to provide meeting space at the Medical College campus.
 +
 +
----
 +
 +
Q2 2012 Meeting May 15
 +
 +
The theme for Q2 is Mobile Security
 +
 +
5:45 - 6:00 Arrive
 +
 +
6:00 - 6:15 Welcome and Opening Remarks / Appsec Trivia
 +
 +
6:15 - 7:00 "Practical Android Security" - Jack Mannino
 +
:Building secure Android applications can be achieved with a mix of common sense, leveraging platform security features, and following secure development best practices. This presentation will focus on security “quick wins” during development and will cover techniques that can reduce the overall attack surface within Android applications.
 +
 +
7:00 - 7:15 Break
 +
 +
7:15 - 8:00 "Application Firewalling in the Age of Mobile: New Considerations" - Stephen Mak
 +
:With mobile application development on a rapid rise, it is important to understand the security risks associated with externally published APIs. This talk will discuss the similarities and differences of risks posed by browser-based web applications and mobile applications.
 +
 +
*Jack Mannino is the CEO of nVisium Security, an application security firm located within the Washington DC area. At nVisium, he helps to ensure that large corporations, government agencies, and software startups have the tools they need to build and maintain successful application security initiatives. He is an active Android security researcher, and has a keen interest in identifying security issues and trends on a large scale. Jack is the leader and founder of the OWASP Mobile Security Project. He also serves as a board member on the OWASP Northern Virginia chapter. Jack is also the lead developer for the OWASP GoatDroid Project, which is a collection of vulnerable Android applications used for training and education.
 +
*Stephen Mak is the Product Manager for the Layer 7 SecureSpan Gateway, and has over 10 years product management experience in the enterprise application software industry. 
 +
 +
Refreshments will be provided at the event and have been donated by Fishnet Security.
 +
 +
University of Central Florida has graciously agreed to provide meeting space at the Medical College campus.
 
   
 
   
 +
----
  
Refreshments will be provided at the event and have been graciously donated by Security Innovations.
+
Q1 2012 Meeting February 22
  
 +
5:45 - 6:00 Arrive
  
University of Central Florida has graciously agreed to provide meeting space at the Medical College campus. Building and room number will be forthcoming.
+
6:00 - 6:15 Welcome and Opening Remarks / Appsec Trivia
  
 +
6:15 - 7:00 "OWASP Where are we... Where are we going in 2012" - Tom Brennan
  
College of Medicine
+
7:00 - 7:15 Break
6850 Lake Nona Blvd.
+
Orlando, Fl 32827
+
  
*Meeting Date: February 22, 2012 6:00 - 8:00 PM
+
7:15 - 8:00 "XSS Defense" - Jim Manico
*Meeting Location: UCF College of Medicine
+
:This talk will discuss the past methods used for cross-site scripting (XSS) defense that were only partially effective. Learning from these lessons, we will also discuss present day defensive methodologies that are effective, but place an undue burden on the developer. We will then finish with a discussion of future XSS defense mythologies that shift the burden of XSS defense from the developer to various frameworks. These include auto-escaping template technologies, browser-based defenses such as Content Security Policy, and Javascript sandboxes such as the Google CAJA project and JSReg.
*Google maps link: http://goo.gl/ztZTF
+
  
== Meeting History ==
+
8:00 - ? After event social gathering - Cariera's
 +
 
 +
*Tom Brennan is a Director at Spiderlabs/Trustwave, an OWASP Global Board Member and Chapter Leader for OWASP NY/NJ Metro.
 +
*Jim Manico is the VP of Security Architecture for WhiteHat Security, a web security firm.  Jim is a participant and project manager of the OWASP Developer Cheatsheet series. He is also the producer and host of the OWASP Podcast Series. 
 +
 
 +
Refreshments donated by Security Innovation.
 +
 
 +
University of Central Florida provided meeting space at the Medical College campus.
 +
 
 +
----
  
 
Inaugural Meeting October 19, 2011 6:30 PM at Seasons 52
 
Inaugural Meeting October 19, 2011 6:30 PM at Seasons 52
Line 51: Line 109:
 
We will be holding our first meeting on October 19 for an informal gathering of those interested in the OWASP mission. This is a chance to get to know the other members of the chapter and engage in the initial dialogue that will drive the direction of the group. We want to know what kinds of technologies you use or are interested in learning about, the challenges you are facing in your daily work and get a sense for the types of content you want to see at future meetings. I will bring some copies of various OWASP guides and possibly some other OWASP shwag to this initial meeting. We will be covering the OWASP mission, culture, and a high level view of OWASP projects. The format for this meeting will largely be discussion oriented. This is not currently a sponsored event, but we do have interested parties asking about sponsorship opportunities so this may change.
 
We will be holding our first meeting on October 19 for an informal gathering of those interested in the OWASP mission. This is a chance to get to know the other members of the chapter and engage in the initial dialogue that will drive the direction of the group. We want to know what kinds of technologies you use or are interested in learning about, the challenges you are facing in your daily work and get a sense for the types of content you want to see at future meetings. I will bring some copies of various OWASP guides and possibly some other OWASP shwag to this initial meeting. We will be covering the OWASP mission, culture, and a high level view of OWASP projects. The format for this meeting will largely be discussion oriented. This is not currently a sponsored event, but we do have interested parties asking about sponsorship opportunities so this may change.
  
*Meeting Date: October 19, 2011 6:30 PM til whenever
+
== Presentation Archive ==
*Meeting Location: Seasons 52 in Orlando, FL at 7700 W Sand Lake Rd.
+
 
*Google maps link: http://goo.gl/PVxrU
+
[https://www.owasp.org/images/e/e8/XSS_Past_Present_and_Future_v2.pptx XSS Past Present and Future v2] - Jim Manico Orlando Q1 2012
*Restaurant: http://www.seasons52.com/  
+
 
 +
[https://www.owasp.org/images/c/ce/Access_Control_Pitfalls_v1.1.pptx Access Control Pitfalls] - Jim Manico Orlando Q1 2012 (Optional 2nd talk not delivered at chapter meeting)
 +
 
 +
[https://www.owasp.org/images/6/60/2012Whereweare..Wherearewegoing.pptx OWASP Where are we... Where are we going in 2012] - Tom Brennan Orlando Q1 2012
 +
 
 +
[https://owasp.org/images/7/7f/OWASP_Orlando_20120515_App_Fw_age_of_mobile.pdf Application Firewalling in the Age of Mobile: New Considerations] - Stephen Mak Orlando Q2 2012
 +
 
 +
Practical Android Security - Jack Mannino Orlando Q2 2012
 +
 
 +
[https://owasp.org/images/2/2e/Orlando_OWASP_-_RealWorldWebServiceTesting.pptx Don't Drop the Soap: Real World Web Service Testing for Web Hackers] - Kevin Johnson Orlando Q3 2012
 +
 
 +
[https://owasp.org/images/e/ee/Orlando_OWASP_WAF_and_IAM_Integration_92012_v2.pptx Web Application Firewalls and Identity and Access Management Integration] - Jan Poscobutt Orlando Q3 2012
  
 
== Chapter Information ==
 
== Chapter Information ==
  
OWASP Orlando is newly formed as of August 2011. The first meeting is scheduled for October 19, 2011. After this initial informal meeting we will then hold our first major content meeting in early 2012. Keep watching this space for announcements about upcoming events. If you are interested in being a speaker or taking a more active leadership role within the chapter, please contact the chapter leader at the link above. Everyone is welcome to join us at our chapter meetings. We track membership based on participation at the mailing list linked on this page and this will be the primary means of communication for the chapter. We also have a Linkedin group at http://goo.gl/BB9fu  
+
OWASP Orlando is newly formed as of August 2011. The first meeting was held on October 19, 2011 and was designed largely as a social event to bring new members together. After this initial informal meeting we are continuing with quarterly meetings focused on content that attendees can apply within their own environments for minimal or no-cost to their organizations. We do not tolerate vendor-centric presentations but do encourage vendors to present as long as they can keep their marketing attempts to a minimum and focus on the underlying issues and technology. Typically we have 2 speakers with topics designed to meet the needs of the Builder, Breaker and Defender communities. As of April 2012 have continued to meet this commitment. Keep watching this space for announcements about upcoming events. If you are interested in being a speaker or taking a more active leadership role within the chapter, please contact the chapter leaders at the link above. Everyone is welcome to join us at our chapter meetings. We track membership based on participation at the mailing list linked on this page and this will be the primary means of communication for the chapter. We also have a Linkedin group at http://goo.gl/BB9fu  
 +
 
 +
== Supporters ==
 +
 
 +
;[https://www.owasp.org/index.php/Membership For information on becoming a supporter and associated benefits]
 +
 
 +
Organizational Supporters
 +
 
 +
[[Image:symantec1.jpg|link=http://www.symantec.com/|Symantec Corporation - 2012]]
 +
 
 +
----
 +
 
 +
Chapter Supporters
 +
 
 +
----
 +
 
 +
Single Meeting Supporters
 +
 
 +
[[Image:Securityinnovation.png|link=http://www.securityinnovation.com/|Security Innovation - OWASP Orlando Q1 2012]]
 +
[[Image:Fishnetlogo.png|link=http://www.fishnetsecurity.com/|Fishnet Security - OWASP Orlando Q2 2012]]
 +
 
 +
----
 +
 
 +
Academic Supporters
 +
 
 +
[[Image:Ucf_medcollege.png|link=http://med.ucf.edu/|UCF College of Medicine - OWASP Orlando Q1-Q2 2012]]
  
 
[[Category:OWASP Chapter]]
 
[[Category:OWASP Chapter]]
 
[[Category:Florida]]
 
[[Category:Florida]]
 
[[Category:Orlando]]
 
[[Category:Orlando]]
 +
[[Category:OWASP_Chapter]]

Revision as of 10:52, 14 February 2013

Contents

OWASP Orlando

Welcome to the Orlando chapter homepage. The chapter was founded in August 2011 by Tony Turner and is currently led byTony Turner and Bill Riggins.
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG

Meeting Registration

Please register for our meetings at http://owasp-orlando.eventbrite.com

OWASP Orlando Chapter Meetings

Q1 2013 Meeting February 13

We are kicking off Q1 of 2013 by going back to the basics. Chapter leadership will be delivering coverage of the OWASP Top 10, with examples and ways you can help reduce your exposure. As always we will have our AppSec Trivia Contest and we have some OWASP hardcopy books for Testing Guide, Code Review Guide and Top 10 to give away as prizes.

We have also changed our venue to Cloudspace who have graciously allowed us to use their space. UCF Medical College, while a great facility was a bit far for some folks to drive so we hope this will work out better for everyone.

6:15 - 6:30 Arrive at Cloudspace (see below)

6:30 - 6:45 Welcome and Opening Remarks

6:45 - 8:00 "OWASP Top 10" - Tony Turner and William Riggins

8:00 - ? After event social gathering - Location TBD

We do not currently have a sponsor for this event but refreshments will be provided. If you are interested in sponsoring please contact tony.turner@owasp.org

Cloudspace (near UCF Main campus) 11551 University Blvd Suite 2 Orlando, FL 32817 http://goo.gl/45l1b

Slides available at: https://docs.google.com/presentation/d/1ed_DaUzBm22XT4l7w9KArHpjeD6zy4gMSrwOJ5hfE80/edit?usp=sharing

Meeting History

Q3 2012 Meeting September 12

5:45 - 6:00 Arrive

6:00 - 6:15 Welcome and Opening Remarks / Appsec Trivia

6:15 - 7:00 "An Insider's Look: WAF and Identity and Access Management Integration" - Jan Poczobutt, Director of Enterprise ADC & WAF Sales at Barracuda Networks, will provide an inside look at some of the problems with traditional access management implementations and how enterprises can sucessfully overcome these challenges by integrating web application firewall technologies with Identity and Access Management. Learn about best practices, specific use cases and how this new integration translates into operational simplicity for the enterprise.

7:00 - 7:15 Break

7:15 - 8:00 "Don't Drop the SOAP: Real World Web Service Testing for Web Hackers" - Over the years web services have become an integral part of web and mobile applications. From critical business applications like SAP to mobile applications used by millions, web services are becoming more of an attack vector than ever before. Unfortunately, penetration testers haven't kept up with the popularity of web services, recent advancements in web service technology, testing methodologies and tools. In fact, most of the methodologies and tools currently available either don't work properly, are poorly designed or don't fully test for real world web service vulnerabilities. In addition, environments for testing web service tools and attack techniques have been limited to home grown solutions or worse yet, production environments.

In this presentation Kevin Johnson will discuss the new security issues with web services and discuss an updated web service testing methodology released at defcon 19 last year that will be integrated into the OWASP testing guide, new Metasploit modules and exploits for attacking web services and an open source vulnerable web service for the Samurai-WTF (Web Testing Framework) that can be used by penetration testers to test web service attack tools and techniques.

  • Kevin Johnson is a security consultant and founder of Secure Ideas. Kevin came to security from a development and system administration background. He has many years of experience performing security services for fortune 100 companies, and in his spare time he contributes to a large number of open source security projects. Kevin's involvement in open-source projects is spread across a number of projects and efforts. He is the founder of many different projects and has worked on others. He founded BASE, which is a Web front-end for Snort analysis. He also founded and continues to lead the SamuraiWTF live DVD. This is a live environment focused on Web penetration testing. He also founded Yokoso and Laudanum, which are focused on exploit delivery. Kevin is a certified instructor for SANS and the author of Security 542: Web Application Penetration Testing and Ethical Hacking. He also presents at industry events, including DEFCON and ShmooCon, and for various organizations, like Infragard, ISACA, ISSA, and the University of Florida.

Twitter: @secureideas

We do not currently have a sponsor for this event but refreshments will be provided. If you are interested in sponsoring please contact tony.turner@owasp.org

University of Central Florida has graciously agreed to provide meeting space at the Medical College campus.


Q2 2012 Meeting May 15

The theme for Q2 is Mobile Security

5:45 - 6:00 Arrive

6:00 - 6:15 Welcome and Opening Remarks / Appsec Trivia

6:15 - 7:00 "Practical Android Security" - Jack Mannino

Building secure Android applications can be achieved with a mix of common sense, leveraging platform security features, and following secure development best practices. This presentation will focus on security “quick wins” during development and will cover techniques that can reduce the overall attack surface within Android applications.

7:00 - 7:15 Break

7:15 - 8:00 "Application Firewalling in the Age of Mobile: New Considerations" - Stephen Mak

With mobile application development on a rapid rise, it is important to understand the security risks associated with externally published APIs. This talk will discuss the similarities and differences of risks posed by browser-based web applications and mobile applications.
  • Jack Mannino is the CEO of nVisium Security, an application security firm located within the Washington DC area. At nVisium, he helps to ensure that large corporations, government agencies, and software startups have the tools they need to build and maintain successful application security initiatives. He is an active Android security researcher, and has a keen interest in identifying security issues and trends on a large scale. Jack is the leader and founder of the OWASP Mobile Security Project. He also serves as a board member on the OWASP Northern Virginia chapter. Jack is also the lead developer for the OWASP GoatDroid Project, which is a collection of vulnerable Android applications used for training and education.
  • Stephen Mak is the Product Manager for the Layer 7 SecureSpan Gateway, and has over 10 years product management experience in the enterprise application software industry.

Refreshments will be provided at the event and have been donated by Fishnet Security.

University of Central Florida has graciously agreed to provide meeting space at the Medical College campus.


Q1 2012 Meeting February 22

5:45 - 6:00 Arrive

6:00 - 6:15 Welcome and Opening Remarks / Appsec Trivia

6:15 - 7:00 "OWASP Where are we... Where are we going in 2012" - Tom Brennan

7:00 - 7:15 Break

7:15 - 8:00 "XSS Defense" - Jim Manico

This talk will discuss the past methods used for cross-site scripting (XSS) defense that were only partially effective. Learning from these lessons, we will also discuss present day defensive methodologies that are effective, but place an undue burden on the developer. We will then finish with a discussion of future XSS defense mythologies that shift the burden of XSS defense from the developer to various frameworks. These include auto-escaping template technologies, browser-based defenses such as Content Security Policy, and Javascript sandboxes such as the Google CAJA project and JSReg.

8:00 - ? After event social gathering - Cariera's

  • Tom Brennan is a Director at Spiderlabs/Trustwave, an OWASP Global Board Member and Chapter Leader for OWASP NY/NJ Metro.
  • Jim Manico is the VP of Security Architecture for WhiteHat Security, a web security firm. Jim is a participant and project manager of the OWASP Developer Cheatsheet series. He is also the producer and host of the OWASP Podcast Series.

Refreshments donated by Security Innovation.

University of Central Florida provided meeting space at the Medical College campus.


Inaugural Meeting October 19, 2011 6:30 PM at Seasons 52

We will be holding our first meeting on October 19 for an informal gathering of those interested in the OWASP mission. This is a chance to get to know the other members of the chapter and engage in the initial dialogue that will drive the direction of the group. We want to know what kinds of technologies you use or are interested in learning about, the challenges you are facing in your daily work and get a sense for the types of content you want to see at future meetings. I will bring some copies of various OWASP guides and possibly some other OWASP shwag to this initial meeting. We will be covering the OWASP mission, culture, and a high level view of OWASP projects. The format for this meeting will largely be discussion oriented. This is not currently a sponsored event, but we do have interested parties asking about sponsorship opportunities so this may change.

Presentation Archive

XSS Past Present and Future v2 - Jim Manico Orlando Q1 2012

Access Control Pitfalls - Jim Manico Orlando Q1 2012 (Optional 2nd talk not delivered at chapter meeting)

OWASP Where are we... Where are we going in 2012 - Tom Brennan Orlando Q1 2012

Application Firewalling in the Age of Mobile: New Considerations - Stephen Mak Orlando Q2 2012

Practical Android Security - Jack Mannino Orlando Q2 2012

Don't Drop the Soap: Real World Web Service Testing for Web Hackers - Kevin Johnson Orlando Q3 2012

Web Application Firewalls and Identity and Access Management Integration - Jan Poscobutt Orlando Q3 2012

Chapter Information

OWASP Orlando is newly formed as of August 2011. The first meeting was held on October 19, 2011 and was designed largely as a social event to bring new members together. After this initial informal meeting we are continuing with quarterly meetings focused on content that attendees can apply within their own environments for minimal or no-cost to their organizations. We do not tolerate vendor-centric presentations but do encourage vendors to present as long as they can keep their marketing attempts to a minimum and focus on the underlying issues and technology. Typically we have 2 speakers with topics designed to meet the needs of the Builder, Breaker and Defender communities. As of April 2012 have continued to meet this commitment. Keep watching this space for announcements about upcoming events. If you are interested in being a speaker or taking a more active leadership role within the chapter, please contact the chapter leaders at the link above. Everyone is welcome to join us at our chapter meetings. We track membership based on participation at the mailing list linked on this page and this will be the primary means of communication for the chapter. We also have a Linkedin group at http://goo.gl/BB9fu

Supporters

For information on becoming a supporter and associated benefits

Organizational Supporters

Symantec Corporation - 2012


Chapter Supporters


Single Meeting Supporters

Security Innovation - OWASP Orlando Q1 2012 Fishnet Security - OWASP Orlando Q2 2012


Academic Supporters

UCF College of Medicine - OWASP Orlando Q1-Q2 2012