Difference between revisions of "User:Yiannis"

From OWASP
Jump to: navigation, search
m
m (Updated short bio)
(4 intermediate revisions by the same user not shown)
Line 1: Line 1:
There is a world of numbers, hiding behind letters, inside computers that stimulates the brain of Yiannis. Currently, he is focusing on research relating to coding standards, practices and ways of exploiting development code. This focus entails the breaking and making of client-side standalone, as well as server-side web applications.
+
There is a world of numbers, hiding behind letters, inside computers, this is what stimulates my work. I am currently employed in IT risk management within the financial industry, running a team of technical risk assessors. Prior to this, I spent 5 years in the world of professional penetration testing. I focused my career evolution on assisting large scale projects actually implement secure development practices. This included teaching developers how to write secure code. For OWASP, I was the project leader for JBroFuzz and used to chair the Global Industry Committee. I am on the Application Security Advisory Board of the (ISC)2. My academic qualifications include a [http://wrap.warwick.ac.uk/1193/ PhD in information security], designing routing protocols for ad-hoc networks. I am a certified scrum master and hold the CISSP certification.
  
'''OWASP Life in Bullets:'''
+
'''Application Security'''  
  
* 2010 - OWASP GitHub [[http://www.owasp.org/index.php/Category:OWASP_GitHub http://www.owasp.org/index.php/Category:OWASP_GitHub]]
+
*2011 - Web-Spa [http://code.google.com/p/web-spa/ Single Request Authorisation Web Knocking]
* 2010 - OWASP London [[http://www.owasp.org/index.php/London#Thursday.2C_January_14th_2010 http://www.owasp.org/index.php/London#Thursday.2C_January_14th_2010]]
+
*2011 - Port Knocking Web Implementations [http://www.portknocking.org/view/implementations Ideas for more ports]
** Penetration Testing with Selenium
+
*2011 - Swiss Cyber Storm [https://www.swisscyberstorm.com/speakers/pavlosoglou.html Protecting Web Applications through Port Knocking]
 +
*2009 - WebGoat Off-By-One Lesson [http://webgoat.googlecode.com/svn-history/r436/trunk/webgoat/src/main/java/org/owasp/webgoat/lessons/OffByOne.java WebGoat Off-By-One Lesson Remains to be Published]
  
'''Contact'''
+
'''OWASP Life in Bullets:'''  
  
Yiannis Pavlosoglou<br>
+
*2010 - Bletchley Park ISSA UK [http://www.issa-uk.org/newsletters/ISSANewsletterApril2010.pdf Hacking for Queen and Country]
yiannis@owasp.org<br>
+
*2010 - OWASP GitHub [http://www.owasp.org/index.php/Category:OWASP_GitHub http://www.owasp.org/index.php/Category:OWASP_GitHub]
 +
*2010 - OWASP London [http://www.owasp.org/index.php/London#Thursday.2C_January_14th_2010 http://www.owasp.org/index.php/London#Thursday.2C_January_14th_2010]
 +
**Penetration Testing with Selenium
 +
*2009 - OWASP Global Industry Committee [http://www.owasp.org/index.php/Global_Industry_Committee http://www.owasp.org/index.php/Global_Industry_Committee]
 +
*2008 - OWASP NYC Conference [http://video.google.com/videoplay?docid=-1551704659206071145# http://video.google.com/videoplay?docid=-1551704659206071145#]
 +
**JBroFuzz - Building a Java Fuzzer
 +
*2008 - Deepsec Vienna [http://2008.deepsec.net/ http://2008.deepsec.net/]
 +
**Hybrid Code Auditing: A Dataflow Source Code Review Methodology
 +
*2007 - OWASP New York/New Jersey [http://www.owasp.org/images/4/4e/OWASP_NY_07-Financial-Real-Time-Threats_Pavlosoglou.ppt http://www.owasp.org/images/4/4e/OWASP_NY_07-Financial-Real-Time-Threats_Pavlosoglou.ppt]
 +
**Financial Real-Time Threats: Impacting Trading Floor Operations
 +
*2006 - JBroFuzz Project Leader [http://lists.owasp.org/mailman/listinfo/owasp-jbrofuzz http://lists.owasp.org/mailman/listinfo/owasp-jbrofuzz]
 +
** JBroFuzz Mailing List
 +
 
 +
'''Project Involvement'''
 +
 
 +
*DirBuster - [http://www.owasp.org/index.php/Category:OWASP_DirBuster_Project http://www.owasp.org/index.php/Category:OWASP_DirBuster_Project]
 +
*JBroFuzz - [http://www.owasp.org/index.php/JBroFuzz http://www.owasp.org/index.php/JBroFuzz]
 +
 
 +
'''Contact'''
 +
 
 +
Yiannis Pavlosoglou<br> yiannis@owasp.org<br>

Revision as of 16:32, 2 March 2014

There is a world of numbers, hiding behind letters, inside computers, this is what stimulates my work. I am currently employed in IT risk management within the financial industry, running a team of technical risk assessors. Prior to this, I spent 5 years in the world of professional penetration testing. I focused my career evolution on assisting large scale projects actually implement secure development practices. This included teaching developers how to write secure code. For OWASP, I was the project leader for JBroFuzz and used to chair the Global Industry Committee. I am on the Application Security Advisory Board of the (ISC)2. My academic qualifications include a PhD in information security, designing routing protocols for ad-hoc networks. I am a certified scrum master and hold the CISSP certification.

Application Security

OWASP Life in Bullets:

Project Involvement

Contact

Yiannis Pavlosoglou
yiannis@owasp.org