Difference between revisions of "SanDiego"

From OWASP
Jump to: navigation, search
Line 1: Line 1:
 
{{Chapter Template|chaptername=San Diego|extra=The chapter leader is [mailto:jeromie@comsecinc.com Jeromie Jackson]
 
{{Chapter Template|chaptername=San Diego|extra=The chapter leader is [mailto:jeromie@comsecinc.com Jeromie Jackson]
<PAYPAL>SanDiego</PAYPAL>
+
<paypal>SanDiego</paypal>
 
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-sandiego|emailarchives=http://lists.owasp.org/pipermail/owasp-sandiego}}&nbsp;  
 
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-sandiego|emailarchives=http://lists.owasp.org/pipermail/owasp-sandiego}}&nbsp;  
  
 
<u>'''Local News'''</u>  
 
<u>'''Local News'''</u>  
  
Thank you for&nbsp;attending our previous chapter meeting and thanks to [http://www.websense.com Websense]&nbsp;for providing a comfortable&nbsp;meeting space. Jeromie Jackson&nbsp;led the meeting with an excellent presentation and there were a variety of new ideas generated via open discussion. The next meeting is currently being planned so please check back here and/or join the mailing list for upcoming meeting details.<br>
+
'''Sushi &amp; Sake- OWASP San Diego to Host Free Web Hacker Dojo'''
  
'''<u>Meeting Notes October 22, 2009</u>'''<br>'''Ideas'''<br>-There are big python and ruby user groups in SD (Gabriel Lawrence is a good conduit)<br>-Many other user groups use meetup.com to publish meetings<br>-Create multisession curriculum (review tools and deep dive on different subject)<br>-Loosely couple presentations so new attendees can easily join in<br>-Discussed idea of charging small fee to attend meetings (decided not to entertain this until meeting matures)<br>-Possibly segregate training sessions from regular sessions and provide a some theme to the training sessions<br>-Vendors to possibly bring in (Rapid7 HDMoore, Breach, Modsecurity, McAfee, DBNetworks)<br>-Possibly provide CPE credits for attending OWASP events
+
The Open Web Application Security Project (OWASP) Chapter in San Diego will be holding a FREE meeting to discuss the latest developments in the OWASP organization, and leading-edge web assessment technologies. Demonstrations will be provided on various web attack techniques and the best practices for defending against them, including web application firewalls. Bring your laptop to participate in the Web Hacker Dojo where everyone will have the opportunity to launch attacks against live lab web servers to see how they compare against today’s countermeasures. Sushi and Sake refreshments will be provided as you network with some of the best security auditors, researchers, and developers in the San Diego area. We look forward to seeing you there!<br>
  
'''Future Meeting Topics<br>'''-Remediation vs. Mitigation<br>-Mitigation techniques when the code can’t be fixed<br>-Demo ESAPI in PHP and/or ASP.net<br>-How to run security testing when evaluating a new software product<br>-CFO level meeting regarding cost justification for security tools and risk assessment<br>-Web enumeration and data mining<br>-Vulnerability classification and remedation techniques <br><br>
+
  Date:    January 27th, 2010
 
+
  Time:    6:00pm - 7:30pm
  Date:    TBD
+
  Time:    TBD
+
 
  Location: Websense Corporate Office
 
  Location: Websense Corporate Office
 
           10240 Sorrento Valley Rd       
 
           10240 Sorrento Valley Rd       
 
           San Diego, California  92121
 
           San Diego, California  92121
  
  Contact: Jeromie Jackson- CISSP, CISM
+
  Contact: rsvp@owasp-sd.org
          Jeromie.Jackson@comsecinc.com
+
    858-754-9701
    858.205.3645
+
 
 +
'''<u>Meeting Notes From October 22, 2009</u>'''<br>'''Ideas'''<br>-There are big python and ruby user groups in SD (Gabriel Lawrence is a good conduit)<br>-Many other user groups use meetup.com to publish meetings<br>-Create multisession curriculum (review tools and deep dive on different subject)<br>-Loosely couple presentations so new attendees can easily join in<br>-Discussed idea of charging small fee to attend meetings (decided not to entertain this until meeting matures)<br>-Possibly segregate training sessions from regular sessions and provide a some theme to the training sessions<br>-Vendors to possibly bring in (Rapid7 HDMoore, Breach, Modsecurity, McAfee, DBNetworks)<br>-Possibly provide CPE credits for attending OWASP events
  
<br>
+
'''Future Meeting Topics'''<br>-Remediation vs. Mitigation<br>-Mitigation techniques when the code can’t be fixed<br>-Demo ESAPI in PHP and/or ASP.net<br>-How to run security testing when evaluating a new software product<br>-CFO level meeting regarding cost justification for security tools and risk assessment<br>-Web enumeration and data mining<br>-Vulnerability classification and remedation techniques<br><br>  
  
 
<u>OWASP San Diego Board Formation</u>  
 
<u>OWASP San Diego Board Formation</u>  
  
[mailto:jeromie@owasp-sd.org Jeromie Jackson] - President<br>[mailto:jeff@owasp-sd.org Jeff Sutton] - Vice President<br>[mailto:matt@owasp-sd.org Matt Harrigan] - Director of Research<br>[mailto:steve@owasp-sd.org Steve Groom] - Director of Marketing<br>[mailto:andy@owasp-sd.org Andy Stovall] - Technical Director<br>[mailto:tom@owasp-sd.org Tom Spencer] - Program Director<br>
+
[mailto:jeromie@owasp-sd.org Jeromie Jackson] - President<br>[mailto:jeff@owasp-sd.org Jeff Sutton] - Vice President<br>[mailto:matt@owasp-sd.org Matt Harrigan] - Director of Research<br>[mailto:steve@owasp-sd.org Steve Groom] - Director of Marketing<br>[mailto:andy@owasp-sd.org Andy Stovall] - Technical Director<br>[mailto:tom@owasp-sd.org Tom Spencer] - Program Director<br>  
  
 
&nbsp;  
 
&nbsp;  
  
 
[[Category:California]]
 
[[Category:California]]

Revision as of 17:58, 22 January 2010

OWASP San Diego

Welcome to the San Diego chapter homepage. The chapter leader is Jeromie Jackson

funds to OWASP earmarked for SanDiego.

Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG 

Local News

Sushi & Sake- OWASP San Diego to Host Free Web Hacker Dojo

The Open Web Application Security Project (OWASP) Chapter in San Diego will be holding a FREE meeting to discuss the latest developments in the OWASP organization, and leading-edge web assessment technologies. Demonstrations will be provided on various web attack techniques and the best practices for defending against them, including web application firewalls. Bring your laptop to participate in the Web Hacker Dojo where everyone will have the opportunity to launch attacks against live lab web servers to see how they compare against today’s countermeasures. Sushi and Sake refreshments will be provided as you network with some of the best security auditors, researchers, and developers in the San Diego area. We look forward to seeing you there!

Date:     January 27th, 2010
Time:     6:00pm - 7:30pm
Location: Websense Corporate Office
          10240 Sorrento Valley Rd       
          San Diego, California  92121
Contact:  rsvp@owasp-sd.org
	  858-754-9701

Meeting Notes From October 22, 2009
Ideas
-There are big python and ruby user groups in SD (Gabriel Lawrence is a good conduit)
-Many other user groups use meetup.com to publish meetings
-Create multisession curriculum (review tools and deep dive on different subject)
-Loosely couple presentations so new attendees can easily join in
-Discussed idea of charging small fee to attend meetings (decided not to entertain this until meeting matures)
-Possibly segregate training sessions from regular sessions and provide a some theme to the training sessions
-Vendors to possibly bring in (Rapid7 HDMoore, Breach, Modsecurity, McAfee, DBNetworks)
-Possibly provide CPE credits for attending OWASP events

Future Meeting Topics
-Remediation vs. Mitigation
-Mitigation techniques when the code can’t be fixed
-Demo ESAPI in PHP and/or ASP.net
-How to run security testing when evaluating a new software product
-CFO level meeting regarding cost justification for security tools and risk assessment
-Web enumeration and data mining
-Vulnerability classification and remedation techniques

OWASP San Diego Board Formation

Jeromie Jackson - President
Jeff Sutton - Vice President
Matt Harrigan - Director of Research
Steve Groom - Director of Marketing
Andy Stovall - Technical Director
Tom Spencer - Program Director