Difference between revisions of "User:Psiinon"

From OWASP
Jump to: navigation, search
 
(33 intermediate revisions by the same user not shown)
Line 1: Line 1:
 +
[[Image:SimonBennetts-OWASP.jpg|right]]
 +
<div style="font-size:120%;border:none;margin: 0;color:#000">
 +
 
Simon Bennetts (a.k.a. Psiinon) has been developing web applications since 1997, and strongly believes that you cannot build secure web applications without knowing how to attack them.
 
Simon Bennetts (a.k.a. Psiinon) has been developing web applications since 1997, and strongly believes that you cannot build secure web applications without knowing how to attack them.
  
He works for a UK FTSE 100 company and leads a team that develops and penetration tests secure web applications, and also gives talks and training courses on web application security.
+
He works for [http://www.mozilla.org/ Mozilla] as part of their [https://wiki.mozilla.org/Security Security Team].
  
 
Some of the projects Simon works on:
 
Some of the projects Simon works on:
  
 
* [https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project OWASP Zed Attack Proxy] project lead
 
* [https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project OWASP Zed Attack Proxy] project lead
* [https://www.owasp.org/index.php/OWASP_Data_Exchange_Format_Project OWASP Data Exchange Format] project lead
+
* [https://www.owasp.org/index.php/OWASP_Vulnerable_Web_Applications_Directory_Project OWASP Vulnerable Web Applications Directory Project] joint project lead
 +
* [https://github.com/mozilla/zest/ Mozilla Zest] project lead
 +
* [https://developer.mozilla.org/en-US/docs/Plug-n-Hack Mozilla Plug-n-Hack] joint project lead
 
* [http://code.google.com/p/bodgeit/ Bodge It Store] project lead
 
* [http://code.google.com/p/bodgeit/ Bodge It Store] project lead
 +
* [https://www.owasp.org/index.php/Web_Application_Security_Testing_Cheat_Sheet OWASP Web Application Security Testing Cheat Sheet] joint author
 
* [https://www.owasp.org/index.php/Category:OWASP_AppSensor_Project OWASP AppSensor] contributor
 
* [https://www.owasp.org/index.php/Category:OWASP_AppSensor_Project OWASP AppSensor] contributor
 
* [http://code.google.com/p/wavsep/ wavsep] contributor
 
* [http://code.google.com/p/wavsep/ wavsep] contributor
* [http://pentest4devs.blogspot.com/ 'Penetration Testing for Developers'] blog author
+
* [https://www.owasp.org/index.php/OWASP_Data_Exchange_Format_Project OWASP Data Exchange Format] project lead (currently inactive)
 +
For full details of Simon's open source contributions see [http://www.ohloh.net/accounts/psiinon Ohloh]
  
He is also one of the chapter leaders for the newly formed [[Manchester]] chapter.
+
Simon has won the WASPY Award in the Best Project Leader category in both [https://www.owasp.org/index.php/WASPY_Awards_2013 2013] and [https://www.owasp.org/index.php/WASPY_Awards_2014 2014]
 +
 +
To see Simon's wiki contributions, [[:Special:Contributions/Psiinon|click here]].
 +
 
 +
He also started the OWASP [[Manchester]] chapter.
  
 
Simon has a B.Sc in Computing and Information Systems from [http://www.manchester.ac.uk/ Manchester University].
 
Simon has a B.Sc in Computing and Information Systems from [http://www.manchester.ac.uk/ Manchester University].
  
* To see Simon's wiki contributions, [[:Special:Contributions/Psiinon|click here]].
+
Online details:
 +
 
 +
* LinkedIn: [http://www.linkedin.com/pub/simon-bennetts/13/57a/3b Simon Bennetts]
 +
* Open HUB: [https://www.openhub.net/accounts/psiinon psiinon] - Which details Simon's open source contributions
 +
* GitHub: [https://github.com/psiinon psiinon]
 +
* SlideShare: [http://www.slideshare.net/psiinon psiinon]
  
 
Contact details:
 
Contact details:
Line 23: Line 39:
 
* Twitter: [http://twitter.com/psiinon @psiinon]
 
* Twitter: [http://twitter.com/psiinon @psiinon]
  
Talks and courses run:
+
Interviews:
* 2012/02/01 [https://www.owasp.org/index.php/2012_02_01_Manchester Manchester chapter meeting]. Talk: The OWASP Top Ten
+
* 2015/03 [http://twit.tv/show/floss-weekly/329 FLOSS Weekly 329: OWASP ZAP]
* 2011/10/25 [https://www.owasp.org/index.php/Leeds_UK OWASP Leeds chapter meeting]. Talk: An introduction to ZAP
+
* 2013/11 [http://www.trustedsoftwarealliance.com/2013/12/13/appsec-usa-2013-zed-attack-proxy-project-with-simon-bennetts-interview/ OWASP Podcast interview at AppSec USA 2013]
 +
* 2013/11 [http://www.techradar.com/news/internet/mozilla-s-web-security-guru-talks-open-source-1194482 Mozilla's web security guru talks open source] (originally published in Linux Format magazine)
 +
 
 +
Talks:
 +
* 2013/11/20 [http://sched.co/13jbvAG OWASP New York AppSec USA] ZAP Innovations - [http://www.slideshare.net/psiinon/owasp-2013-appsecusatalk slides], [http://www.youtube.com/watch?v=pYFtLA2yTR8 video]
 +
* 2013/10/31 [https://www.owasp.org/index.php/OWASP_Limerick_Day_2013#tab=Conference_Day OWASP Limerick Day] OWASP ZAP - Whats even newer - [http://www.slideshare.net/psiinon/owasp-2013-limerick slides]
 +
* 2013/10/17 [http://www.joinsec.com/lectures/simon-bennetts/ JoinSEC London] An Introduction to the OWASP Zed Attack Proxy - [http://www.slideshare.net/psiinon/owasp-2013-joinsec slides]
 +
* 2013/09/23 [http://sched.appsec.eu/event/827cfea8e84949a358f8baaab2cb8879#.Uhiw-E3ehrc OWASP Hamburg AppSec EU] ZAP Innovations - [http://www.slideshare.net/psiinon/owasp-2013-appseceu slides], [http://www.youtube.com/watch?v=HqSagcvBTFs video]
 +
* 2013/02/02 [https://fosdem.org/2013/schedule/event/security_owasp/ FOSDEM]. Practical Security for developers, using OWASP ZAP - [https://www.youtube.com/watch?v=QG2RCZHMEkM video]
 +
* 2012/11/07 [https://www.owasp.org/index.php/German_OWASP_Day_2012/Programm OWASP German Day]. The OWASP Zed Attack Proxy - [https://www.owasp.org/images/d/d4/Zed_Attack_Proxy_-_Simon_Bennetts.pdf slides]
 +
* 2012/09/12 [https://www.owasp.org/index.php/East_Midlands OWASP East Midlands] chapter meeting. The OWASP Top Ten - [https://www.owasp.org/index.php/File:OWASP_Manchester_12_02_10_intro.pptx slides]
 +
* 2012/09/11 [https://www.owasp.org/index.php/Manchester OWASP Manchester] chapter meeting. The OWASP Zed Attack Proxy [http://www.slideshare.net/psiinon/owasp-2012-appsec-dublin-zap-intro - slides] (same as for Dublin;)
 +
* 2012/09/06 [http://www.appsecireland.org/ OWASP Dublin AppSec]. The OWASP Zed Attack Proxy [http://www.slideshare.net/psiinon/owasp-2012-appsec-dublin-zap-intro - slides]
 +
* 2012/04/14 [https://www.owasp.org/index.php/AppSecAsiaPac2012OWASP OWASP Sydney AppSec AsiaPac]. The Zed Attack Proxy - [https://www.owasp.org/index.php/File:OWASP_APPSEC_ASIAPAC_ZAP_2.pptx slides]
 +
* 2012/02/01 [https://www.owasp.org/index.php/2012_02_01_Manchester OWASP Manchester] chapter meeting. The OWASP Top Ten - [https://www.owasp.org/index.php/File:OWASP_Manchester_12_02_10_intro.pptx slides]
 +
* 2011/10/25 [https://www.owasp.org/index.php/Leeds_UK OWASP Leeds] chapter meeting. An introduction to ZAP
 +
* 2011/09/23 [http://www.appsecusa.org/talks.html#zap OWASP Minneapolis AppSec USA]. An introduction to ZAP - [https://www.owasp.org/index.php/File:OWASP_APPSEC_USA_2011_ZAP.ppt slides] - [http://vimeo.com/32387480 video]
 +
* 2011/06/10 [https://www.owasp.org/index.php/AppSecEU2011#tab=June_10th OWASP Dublin AppSec EU]. An introduction to ZAP
 +
* 2011/02/26 [http://www.manlug.org/?p=1297Manchester Linux User Group]. An introduction to OWASP, the top 10 and ZAP
 +
* 2010/12/08 [https://www.owasp.org/index.php/Leeds_UK OWASP Leeds] chapter meeting.  An introduction to ZAP
 +
 
 +
Courses run:
 +
* 2013/11/21 [http://sched.co/1gFtXh1 OWASP New York AppSec USA] 4 hour ZAP Hackathon - [http://www.slideshare.net/psiinon/owasp-2013-appsec-usa-zap-hackathon slides]
 
* 2011/10/20 [https://www.owasp.org/index.php/Ireland-Dublin OWASP Dublin chapter]. 2 hour course: The OWASP Zed Attack Proxy
 
* 2011/10/20 [https://www.owasp.org/index.php/Ireland-Dublin OWASP Dublin chapter]. 2 hour course: The OWASP Zed Attack Proxy
* 2011/09/23 Minneapolis AppSec USA. Talk: [http://www.appsecusa.org/talks.html#zap An introduction to ZAP] - [https://www.owasp.org/index.php/File:OWASP_APPSEC_USA_2011_ZAP.ppt slides] - [http://vimeo.com/32387480 video]
+
 
* 2011/06/10 Dublin AppSec EU. Talk: [https://www.owasp.org/index.php/AppSecEU2011#tab=June_10th An introduction to ZAP]
+
For more ZAP related videos see the [http://code.google.com/p/zaproxy/wiki/Videos Tutorial videos] and [http://code.google.com/p/zaproxy/wiki/VideosOther Other videos] on the ZAP wiki
* 2011/02/26 Manchester Linux User Group. Talk: [http://www.manlug.org/?p=1297 An introduction to OWASP, the top 10 and ZAP]
 
* 2010/12/08 [https://www.owasp.org/index.php/Leeds_UK OWASP Leeds chapter meeting]. Talk: An introduction to ZAP
 

Latest revision as of 04:03, 18 May 2016

SimonBennetts-OWASP.jpg

Simon Bennetts (a.k.a. Psiinon) has been developing web applications since 1997, and strongly believes that you cannot build secure web applications without knowing how to attack them.

He works for Mozilla as part of their Security Team.

Some of the projects Simon works on:

For full details of Simon's open source contributions see Ohloh

Simon has won the WASPY Award in the Best Project Leader category in both 2013 and 2014

To see Simon's wiki contributions, click here.

He also started the OWASP Manchester chapter.

Simon has a B.Sc in Computing and Information Systems from Manchester University.

Online details:

Contact details:

Interviews:

Talks:

Courses run:

For more ZAP related videos see the Tutorial videos and Other videos on the ZAP wiki