Difference between revisions of "Tampa"

From OWASP
Jump to: navigation, search
(Next Meeting)
(Next Meeting)
(28 intermediate revisions by 2 users not shown)
Line 1: Line 1:
 
== Welcome to the OWASP Tampa Local Chapter  ==
 
== Welcome to the OWASP Tampa Local Chapter  ==
  
<paypal>Tampa</paypal>
+
 
  
 
Anyone in our area interested in information security is welcome to attend. Our meetings are informal and encourage open discussion of all aspects of application security. We invite attendees to give short presentations about specific topics.  
 
Anyone in our area interested in information security is welcome to attend. Our meetings are informal and encourage open discussion of all aspects of application security. We invite attendees to give short presentations about specific topics.  
Line 17: Line 17:
 
== Next Meeting  ==
 
== Next Meeting  ==
  
Our next meeting will be held on Wednesday, March 28 from 6pm to 8pm at Kforce in Ybor. Bill Church of F5 Networks will be presenting 'Inside Anonymous: Lessons Learned' and Stuart Hancock of DBNetworks will be presenting 'Protecting Against SQLi in Real-Time.' Abstract and bios for the presentations and presenters is below.
+
Our next meeting will be held in Q4 at Kforce in Ybor. Check back here often to learn about the specific dates and presentation. Alternatively, join our [https://lists.owasp.org/mailman/listinfo/owasp-tampa mailing list] and [http://www.linkedin.com/groups?about=&gid=2897535&trk=anet_ug_grppro LinkedIn] group.
  
This quarter's meeting agenda is as follows:
+
The following is an agenda for our next meeting:
 +
<UL>
 +
<LI>5:45 PM to 6:00 PM - Check-in
 +
<LI>6:00 PM to 7:00 PM - Presentation
 +
<LI>7:00 PM to 7:15 PM - Break
 +
<LI>7:15 PM to 8:00 PM - Presentation
 +
</UL>
  
*5:45 PM to 6:00 PM - Check-in
+
== Meeting Location  ==
*6:00 PM to 6:45 PM - Protecting Against SQLi in Real-Time - Stuart Hancock, Director of Systems Engineering, DBNetworks
+
*6:45 PM to 7:00 PM - Break
+
*7:00 PM to 7:45 PM - Inside Anonymous: Lessons Learned - Bill Church, Field Systems Engineer - Federal, F5 Networks
+
*7:45 PM to 8:00 PM - Open Discussion Forum
+
  
'''Protecting Against SQLi in Real-Time - Stuart Hancock, Director of Systems Engineering, DBNetworks'''
+
Our next meeting will be held at the [http://www.kforce.com Kforce] building in Ybor. The address is:
  
Weekly, there are news reports of new SQL injection attacks on corporate databases throughout the country. While applications which are free from vulnerabilities are always the best solution, a better backstop is clearly needed. Existing solutions are unable to defend against this threat. DBNetworks will present its vision for a future technology which will protect against new and unique SQL injection attacks in real-time.
+
[http://maps.google.com/maps?q=1001+East+Palm+Ave.+Tampa,+FL+33605&ll=27.962452,-82.449324&spn=0.008908,0.01929&oe=UTF-8&fb=1&gl=us&cid=0,0,7292050205277130420&z=16&iwloc=A 1001 East Palm Ave. Tampa, FL 33605]
  
''Prior to coming on board at DBNetworks as the Director of Systems Engineering, Stuart was the Enterprise Cloud Program Manager at Cisco Systems; prior to that, he held positions at Cisco as a consulting engineer and HPC architect, and has worked in the past for a number of startups as well as EMC, IPivot (acquired by Intel for $500M), Intel, and Wang Laboratories.'' 
+
Park in the Visitor spaces in the main parking lot that is off of East Palm Avenue. You will need to identify yourself at the security desk and ask how to get to Training Room B.
  
'''Inside Anonymous: Lessons Learned - Bill Church, Field Systems Engineer - Federal, F5 Networks'''
+
== Presentation Archives  ==
  
Lessons learned from F5 customers who have been attacked by Anonymous and survived. We will walk through attacks complete with logs and captures showing how the attacks arrived and how were ultimately thwarted. We will also share tips for tuning your systems during an attack.
+
OWASP Tampa Day 2013 - Securing Your Applications' Data With Web Application Firewalls - Dennis K. Usle - Presentation Slides [https://www.owasp.org/images/b/b7/Securing_your_Applications_%26_Data_With_Web_Application_Firewalls.pdf here]
  
''Bill has been in the information security space since 1998 both as customer, consultant, and an engineer. He was dropped in the deep end of a dot com website in the early 2000s in the days of Code Red and Nimda and and had to learn security the hard way. Bill is a firm believer in "know thy enemy and know thy self", you can't effectively secure yourself if you don't understand how the bad guys think and operate. He enjoys long walks on the beach and a fine single malt scotch.''
+
OWASP Tampa Day 2013 - Bring Your Own Service - Doug Maul - Presentation Slides [https://www.owasp.org/images/e/e2/Bring_Your_Own_Service.pdf here]
  
== Meeting Location  ==
+
OWASP Tampa Day 2013 - Design Consideration & Guiding Principles for Implementing Cloud Security - Bill Sterns - Presentation Slides [https://www.owasp.org/images/4/47/Design_considerations_and_Guiding_Principles_for_Implementing_Cloud_Security.pdf here]
  
We meet quarterly at the [http://www.kforce.com Kforce] building in Ybor. The address is:
+
OWASP Tampa Day 2013 - Let's Get Right To The Endpoint - Mel Pless - Presentation Slides [https://www.owasp.org/images/e/e5/Let%E2%80%99s_Get_Right_To_The_Endpoint.pdf here]
  
[http://maps.google.com/maps?q=1001+East+Palm+Ave.+Tampa,+FL+33605&ll=27.962452,-82.449324&spn=0.008908,0.01929&oe=UTF-8&fb=1&gl=us&cid=0,0,7292050205277130420&z=16&iwloc=A 1001 East Palm Ave. Tampa, FL 33605]  
+
OWASP Tampa Day 2013 - Vulnerability Management That Works - Tony Turner - Presentation Slides [https://www.owasp.org/images/2/2f/Vulnerability_Management_That_Works.pdf here]
  
Park in the Visitor spaces in the main parking lot that is off of East Palm Avenue. You will need to identify yourself at the security desk and ask how to get to Training Room B.  
+
2012-Q3 - Taming the B.E.A.S.T. - Richard Newman - Presentation Slides [https://www.owasp.org/images/1/10/Taming_the_B.E.A.S.T..pdf here]
  
== Presentation Archives  ==
+
OWASP Tampa Day 2012 - Changing the Game - Jason Kent - Presentation Slides [https://www.owasp.org/images/0/04/OWASP_Changing_the_Game_-_Jason_Kent.pdf here]
 +
 
 +
OWASP Tampa Day 2012 - MDM Technical Presentation - Keith Katz - Presentation Slides [https://www.owasp.org/images/a/a4/Zenprise_Technical_Presentation_-_Keith_Katz.pdf here]
 +
 
 +
OWASP Tampa Day 2012 - Federated Identities in the Real World - Nathan Sargent - Presentation Slides [https://www.owasp.org/images/7/78/Federated_Identities_in_the_Real_World_-_Nathan_Sargent.pdf here]
 +
 
 +
OWASP Tampa Day 2012 - Define and Optimize Your Approach to Application Security - Bruce Jenkins - Presentation Slides [https://www.owasp.org/images/8/8a/Define_and_Optimize_Your_Approach_to_Application_Security_-_Bruce_Jenkins.pdf here]
 +
 
 +
OWASP Tampa Day 2012 - Anonymous: Lessons Learned - Bill Church - Presentation Slides [https://www.owasp.org/images/a/a1/Anonymous_-_Lessons_Learned_-_Bill_Church.pdf here]
 +
 
 +
2012-Q1 - Protecting Against SQLi in Real-Time - Stuart Hancock - Presentation Slides [https://www.owasp.org/index.php/File:DBN-OWASP_Presentation.pdf here]
  
 
2011-Q4 - How Not to Build Android Apps - Jack Mannino - Presentation Slides [https://www.owasp.org/images/8/86/HowNotToBuildAndroidApps2.pdf here]
 
2011-Q4 - How Not to Build Android Apps - Jack Mannino - Presentation Slides [https://www.owasp.org/images/8/86/HowNotToBuildAndroidApps2.pdf here]

Revision as of 12:41, 22 August 2013

Contents

Welcome to the OWASP Tampa Local Chapter

Anyone in our area interested in information security is welcome to attend. Our meetings are informal and encourage open discussion of all aspects of application security. We invite attendees to give short presentations about specific topics.

We have a mailing list at: https://lists.owasp.org/mailman/listinfo/owasp-tampa

If you have any questions about the Tampa chapter, please send an email to the chapter leader Justin Morehouse.

The Tampa chapter is sponsored by GuidePoint Security.

Join the OWASP Tampa LinkedIn group here.

A reminder that CISSPs can earn 1 CPE credit for every hour of attendance at OWASP meetings.

Next Meeting

Our next meeting will be held in Q4 at Kforce in Ybor. Check back here often to learn about the specific dates and presentation. Alternatively, join our mailing list and LinkedIn group.

The following is an agenda for our next meeting:

  • 5:45 PM to 6:00 PM - Check-in
  • 6:00 PM to 7:00 PM - Presentation
  • 7:00 PM to 7:15 PM - Break
  • 7:15 PM to 8:00 PM - Presentation

Meeting Location

Our next meeting will be held at the Kforce building in Ybor. The address is:

1001 East Palm Ave. Tampa, FL 33605

Park in the Visitor spaces in the main parking lot that is off of East Palm Avenue. You will need to identify yourself at the security desk and ask how to get to Training Room B.

Presentation Archives

OWASP Tampa Day 2013 - Securing Your Applications' Data With Web Application Firewalls - Dennis K. Usle - Presentation Slides here

OWASP Tampa Day 2013 - Bring Your Own Service - Doug Maul - Presentation Slides here

OWASP Tampa Day 2013 - Design Consideration & Guiding Principles for Implementing Cloud Security - Bill Sterns - Presentation Slides here

OWASP Tampa Day 2013 - Let's Get Right To The Endpoint - Mel Pless - Presentation Slides here

OWASP Tampa Day 2013 - Vulnerability Management That Works - Tony Turner - Presentation Slides here

2012-Q3 - Taming the B.E.A.S.T. - Richard Newman - Presentation Slides here

OWASP Tampa Day 2012 - Changing the Game - Jason Kent - Presentation Slides here

OWASP Tampa Day 2012 - MDM Technical Presentation - Keith Katz - Presentation Slides here

OWASP Tampa Day 2012 - Federated Identities in the Real World - Nathan Sargent - Presentation Slides here

OWASP Tampa Day 2012 - Define and Optimize Your Approach to Application Security - Bruce Jenkins - Presentation Slides here

OWASP Tampa Day 2012 - Anonymous: Lessons Learned - Bill Church - Presentation Slides here

2012-Q1 - Protecting Against SQLi in Real-Time - Stuart Hancock - Presentation Slides here

2011-Q4 - How Not to Build Android Apps - Jack Mannino - Presentation Slides here

2011-Q4 - Behind Enemy Lines: Practical & Triage Approaches to Mobile Security Abroad - Justin Morehouse - Presentation Slides here

2011-Q3 - Hiding in Plain Sight - Ramece Cave - Presentation Slides here

2011-Q3 - PCI Compliance 2.0 - Kate Mullin - Presentation Slides here

OWASP Tampa Day 2011 - PCI for Developers: Lessons from the Real World - Trevor Hawthorn - Presentation Slides here

OWASP Tampa Day 2011 - Top Website Vulnerabilities: Trends, Business Effects and How to Fight Them - Rinaldi Rampen - Presentation Slides here

OWASP Tampa Day 2011 - How to Defend the Universe from Evil-doers: A Guide for Software Developers and Security Teams - Bruce Jenkins - Presentation Slides here

OWASP Tampa Day 2011 - Analysis of Deadly Combination of XSS and CSRF - Sherif Koussa - Presentation Slides here

2011-Q1 - Real Lessons of Deploying Static Analysis in Development Groups - Jeff LoSapio - Presentation Slides here

2011-Q1 - Intelligence Gathering for Penetration Testers: Opening Doors with Metadata - Chris Patten - Presentation Slides here

2011-Q1 - Vulnerability Management in an IPv6 World - Richard Newman & Brett McKinney - Presentation Slides here

2010-Q4 - Nessus Bridge for Metasploit - Zate Berg - Presentation Slides here

2010-Q2 - Stealing Guests...The VMware Way - Justin Morehouse & Tony Flick - Presentation slides here

2010-Q1 - The New World of Smartphone Security - Trevor Hawthorn - Presentation slides here

2009-Q3 - Hacking the Smart Grid - Tony Flick - Presentation slides here

2009-Q2 - Open SAMM - Zate Berg - Presentation slides here

2009-Q1 - XSS Anonymous Browser - Matt Flick - Presentation slides here

2008-Q4 - Google Code Search : The pitfalls of Copy/Paste - Tony Flick - Presentation slides here