WASPY Award 2012 Candidates
WASPY Award 2012 Candidates
Candidate: Helen Gao
Candidate Submitted By: China Chapter
Accomplishments: Senior Architect,Global Membership Committee Chair, One of Chinese Project leader,Long Island Chapter Leader, AppSec Asia 2011 organizer, etc...
Why this person was chosen?: Helen volunteered to OWASP since 2006 and contributed a lot for OWASP as a member of Global Membership Committee and Long Island Chapter leaders. Also helen helped a lot for Great China area as a leader of Chinese Project. Moreover she is one of the main organizer for AppSec Asia 2011. Right now, Helen is the chair of Global Membership Committee.
Candidate:Abbas Naderi Afooshteh
Candidate Submitted By:Iran Chapter
Candidate:Dr. Kees Leune
Candidate Submitted By:Long Island Chapter
Candidate Submitted By:Zed Attack Proxy Project
Accomplishments:OWASP ZAP Founder and project leader, GSoC Mentor, OWASP Manchester founder, international speaker
Why this person was chosen?:Simon started the OWASP Zed Attack Proxy Project in 2010 and actively leads the international group of volunteers who develop it. This summer he mentored 2 Google Summer of Code students working on ZAP. He started the OWASP Manchester chapter and has encouraged and supported the formation of the new East Midlands and Newcastle chapters. Simon has talked about ZAP and OWASP at both security and not security events around in Europe, America and Australia. He is also involved in the OWASP Data Exchange Format and AppSensor projects, started the Web Application Security Testing Cheat Sheet and has contributed to other open source security projects such as the BodgeIt Store and the Web Application Vulnerability Scanner Evaluation Project (wavsep).
Candidate Submitted By:OWASP HTTP POST TOOL
Accomplishments:Ryan is a core developers on the OWASP CRS project https://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project
Why this person was chosen?When working on the HTTP POST TOOL we made it available for testing to many organizations so that before we released a tool that could be potentially malishous there were well documented defensive approaches. Ryan Barnett was not only intrested from the initial presentation at OWASP AppSec DC 2010 but worked to develop defensive methods for Mod_Security to educate and provide assistance to the OWASP community members BEFORE it was released. Ryan has been a long time contributor to the OWASP organization and should be reconized formally for this outstanding volenteer service.
Candidate:Breno Silva Pinto
Candidate Submitted By:OWASP ModSecurity Core Rule Set (CRS) Project
Accomplishments:Breno added many important features to ModSecurity to help prevent web-based attacks:
- Prevention of HTTP Slow Request/Read DoS Attacks
- HMAC Token Protection to help prevent parameter tampering, directory traversals and cross-site request forgery attacks.
- Data Substitution Capabilities to modify content to remove data leakages and malicious payloads.
Why this person was chosen? Breno is the core developer of the hugely popular open source ModSecurity web application firewall project - http://www.modsecurity.org/. Breno is a passionate application software defender in Brazil that has greatly helped the owasp community worldwide with his contributions and presentations at conference.