Events  Deals  Jobs  NFT NYC 2024 
    Sign in  
 
 
Thu, Feb 25, 2016 @ 07:30 PM   FREE   ThoughtWorks, 99 Madison Ave, 15th Fl
 
     
 
 
              

      
 
Sign up for our awesome New York
Tech Events weekly email newsletter.
   
LOCATION
EVENT DETAILS

The Open Web Application Security Project (OWASP) is a501(c)(3)worldwide not-for-profit charitable organization focused on improving the security of software. Our mission is to make software securityvisible,so thatindividuals and organizationsworldwide can make informed decisions about true software security risks.OWASP does not endorse or recommend commercial products or services, allowing our community to remain vendor neutral with the collective wisdom of the best minds in software security worldwide.

To access thousands of hours of video content, hundreds of projects visitwww.owasp.orgtoday.

=============================================

AGENDA

7:30pm - Networking

Session 1

Chapter News Globally and Locally withTom Brennan

30k OWASP RFPand other things for 2016

Session 2

The ThreadFix Ecosystem: Vendors, Volunteers, and Versions,Dan Cornell

Abstract:ThreadFix is an open source application vulnerability management system that helps automate many common application security tasks and integrate security and development tools. This presentation looks at the components of the platform and how they work together to help developers and application security analysts build more secure software. In addition to being a platform, ThreadFix is also an ecosystem of users and volunteers and the presentation will look at several case studies of how these groups have worked together to extend and improve the ThreadFix platform.

Session 3

Web Vulnerabilities and Hacks Observed in Forensic Investigations,Ondrej Krehel


Abstract:Investigation of hacking incidents often requires combine effort of different technologies. Network forensics is one of the components in the process of finding compromised hosts, capturing and reconstructing malicious sessions. This lab will cover open source tools used for network forensics. Variety of tools can produce quite significant supplement to electronic evidence, and in many cases also capture the malicious executable transmitted in the traffic, or ex-filtrated data.

Various network protocols and their structure will be presented. Open source network forensic tools will be used on the traffic captured from a hacked web server. Different tools will be introduced for specific tasks in the investigation process. Captured traffic will be analyzed and reconstructed and various artifacts found in the investigation will be discussed.


=============================================


Special thanks to our venue host Thoughtworks and to our meeting sponsorsHewlett Packard,Netspi, Talener andall of ourlocal chapter supporters.

=============================================

If you are interested in submitting a talk for an upcoming meetingclick hereor becoming asponsorclick here. Have questions or need any additional information, pleasecontact Dawn Aitken at dawn.aitken@owasp.org or 973-658-6186.

 
 
 
 
© 2024 GarysGuide      About    Feedback    Press    Terms