1 / 18

OWASP (Membership) and new OWASP Projects

OWASP (Membership) and new OWASP Projects. Sebastien Deleersnyder CISSP Feb, 2006 sdl@ascure.com. Agenda. Introduction OWASP Belgium Chapter New OWASP Projects. Agenda. Introduction OWASP Belgium Chapter New OWASP Projects. Introduction. Sponsors this evening:

sheryl
Télécharger la présentation

OWASP (Membership) and new OWASP Projects

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. OWASP (Membership) and new OWASP Projects Sebastien Deleersnyder CISSP Feb, 2006 sdl@ascure.com

  2. Agenda • Introduction • OWASP • Belgium Chapter • New OWASP Projects

  3. Agenda • Introduction • OWASP • Belgium Chapter • New OWASP Projects

  4. Introduction • Sponsors this evening: • K.U.Leuven sponsors venue • BeeWare sponsors Pizza & Drinks • Call for additional sponsors • Chapter meeting places & catering • Support for local projects • OWASP cannot recommend the use of products, services, or recommend specific companies

  5. Introduction Program for this evening: • 18h20 - 18h40: Sebastien DeleersnyderOWASP (Membership) & new OWASP Projects • 18h40 - 19h30: Philippe BogaertsWebScarab demonstration • 19h30 - 20h45: Web Application Firewalls: Panel Discussion

  6. Agenda • Introduction • OWASP • Belgium Chapter • New OWASP Projects

  7. OWASP • Open Web Application Security Project • OWASP is dedicated to finding and fighting the causes of insecure software • Non-profit, volunteer driven organization • All members are volunteers • All work is donated by sponsors

  8. OWASP? • Provide free resources to the community • Publications, Articles, Standards, e.g. • OWASP Top 10 • OWASP Guide • Testing Guide • Testing and Training Software, e.g. • WebGoat • WebScarab • .NET Projects • Local Chapters, Mailing Lists & Conferences • Dual license model: • Open Source Licenses • Commercial License for Members

  9. OWASP Membership • Using OWASP material? • Join us and become member! • Enable OWASP to continue to provide unbiased: • Tools • Documentation • Conferences • Mailing Lists • … www.owasp.org/about/membership.html

  10. Agenda • Introduction • OWASP • Belgium Chapter • New OWASP Projects

  11. Belgium Chapter - What do we have to offer? • Quarterly Meetings • Mailing List • Presentations & Groups • Open forum for discussion • Meet fellow InfoSec professionals • Create (Web)AppSec awareness in Belgium • Local projects?

  12. Belgium Chapter – House Rules • Free & open to everyone • Language • English preferred • Native language: no problem! • No vendor pitches or $ales presentations • Respect for different opinions • No flaming (including M$ bashing) • 1 CISSP CPE for each hour of OWASP chapter meeting • Sign Sheet & I’ll e-mail scan: you claim CPE credits

  13. OWASP Local Chapter Meetings 2006 • Next Meetings: • Monday May 8th 2006 - Brussels • Thursday Sep 14th 2006 - Antwerp • Tuesday Nov 21 2006 - Brussels • Program: • Short OWASP intro • Presentation on introduction topic • Panel, workshop, round-table, … on more advanced topic • Topics: • Call for input!

  14. Agenda • Introduction • OWASP • Belgium Chapter • New OWASP Projects

  15. New OWASP Projects • OWASP Site Generator • http://owasp.net/forums/428/ShowPost.aspx • http://owasp.net/blogs/dinis_cruz/archive/2006/01/25/431.aspx • WASS, or Web Application Security Standards project • http://www.owasp.org/standards/wass.html • SEASA, Scoping and Evaluating Application Security Assessments • See Metrics Mailing List: http://lists.sourceforge.net/lists/listinfo/owasp-metrics • Terminology input needed • Metrics Project Reactivation? • Top10 2006? • Testing Project?

  16. OWASP Conference • Europe OWASP conference in Belgium! • KUL • May 29: training course Web Application Security / Web Services Security • May 30-31: Conference – 2 tracks • Speaker, paper & sponsoring input appreciated!

  17. That’s it… • Any Questions? http://www.owasp.org/local/belgium.html sdl@ascure.com Thank you!

  18. Subscribe to BE Chapter mailing list • Keep up to date! • Post your (Web)AppSec questions • Contribute to discussions!

More Related