OWASP London Chapter Meeting 28th September 2017 London Chapter - PowerPoint PPT Presentation

OWASP London Chapter Meeting 
 28th September 2017


 London Chapter Chapter Leaders: • Sam Stepanyan (@securestep9) • Sherif Mansour (@kerberosmansour) 
 Chapter Events: • Chapter Meetings at least once every 2 months • Hackathon & CTF - coming soon • Hacker Pub Quiz - coming soon

Staying in Touch 
 OWASP London Join The OWASP London Mailing List: http://lists.owasp.org/mailman/listinfo/owasp-london Follow us on Twitter “Like” us on Facebook 
 @ owasplondon https://www.facebook.com/OWASPLondon Slack : owasp.slack.com #chapter-london Watch us on YouTube : YouTube.com/OWASPLondon OWASP London Provisional Dates of future meetings: Visit OWASP London Chapter webpage 23 November 2017 https://www.owasp.org/index.php/London

Live Stream We are LIVE STREAMING THIS EVENT: facebook.com/OWASPLondon


 Agenda Networking, pizza & drinks • Welcome and OWASP Update - Sam Stepanyan & Sherif Mansour • Application Level Vulnerabilities in Containerised Applications - • Benjy Portnoy 
 - - - - - - -- - - - - break - - - - - -- - -- - -- - -- - -- - -- - - -- - -- - - 
 Hunting Security Bugs In Web Apps - Suleman Malik • Wrap up • Networking & Beer - Greenwood London (Bar opposite Victoria) •

OWASP • We are a Global not-for-profit charitable organisation • Focused on improving the security of software • Vendor-Neutral Community • Collective Wisdom of the Best Minds in Application Security Worldwide • We collaboratively develop and provide free tools, guidance, standards • All meetings are free to attend (* free beer included )

Worldwide • Over 200 local Chapters around the world

UK Chapters • Belfast • Birmingham • Bristol • Cambridge • Leeds • London • Manchester • Newcastle • Royal Holloway (inactive) • Scotland • Sheffield • Suffolk

Become a Member We are all VOLUNTEERS! (45,000 worldwide)

Membership $50/year!

OWASP Member If you are a member already 
 - collect this sticker from the Chapter Leaders

Member Benefits ➡ Support Ethics & Principles of the OWASP Foundation ➡ Underscore your awareness of Application Security ➡ Increase your value, knowledge and expand your skills, network with professionals who share similar concerns, interests and goals, collaborate on projects ➡ Get exclusive discounts on AppSecEU/USA and many other Global CyberSecurity Conferences & events ➡ Donate to your local Chapter and Projects $50/year! ➡ Get an @owasp.org email address ➡ VOTE on issues that shape direction of OWASP community

OWASP Corporate Members

Premier Members Premier members (donate $20,000/year):

London Chapter Supporters 


OWASP Books 16

OWASP Top 10 2017 RC • RC1 of the OWASP Top 10 2017 has been rejected • A1, A2, A3, A4, A5, A6, A8, A9 have been left untouched by consensus view • The new OWASP Top 10 2017 is to be released late November 2017.

Girl Hacker? •Learn more about AppSec •Participate & Contribute in OWASP •Speak at OWASP events and AppSec conferences •Make Connections with like-minded women globally •Develop Thought Leadership •Train and mentor all interested women in AppSec •Grow Your Career

Women In AppSec

AppSecUSA 2017

DevSecCon London 2017 20% OFF Discount of OWASP Members

All Day DevOps FREE VIRTUAL CONFERENCE Join us on October 24, 2017

Black Hat London 2017

OWASP Board Elections

Global Board Elections 2017 • 4 New Directors of OWASP Global Board To Be Elected • The OWASP Board of Directors currently consists of 7 elected volunteers who serve a 2-year term. • These unpaid volunteers dedicate themselves to the organisational mission and playing a pivotal role in the software security community. • Members of the Global Board of Directors are responsible for setting the strategic direction of the organisation and ensuring the financial integrity of the OWASP Foundation.

Board Candidates Greg Anderson Bil Corry 
 Arthur Hicken 
 Steve Kosten OWASP San Antonio OWASP Compliance CSE Parasoft OWASP Denver Sherif Mansour 
 Owen Pendlebury 
 Milton Smith 
 Chenxi Wang 
 OWASP London OWASP Dublin OWASP Logging CSO Twistlock

Voting opens - October 9, 2017 Voting closes - October 31, 2017 Results Published - November 7, 2017

Present Your Talk Call For Speakers For Future Events Do you have a great Application Security Related Talk? 3 Tracks: • Breakers Submit the abstract of your talk and your bio to: • Defenders owasplondon @ owasp .org • Builders

Talk Time! • Benjy Portnoy • Suleman Malik


 Thank You! Speakers: 
 Hosts for this event • Benjy Portnoy • John Lewis Partnership • Suleman Malik All slides will be published on OWASP.ORG and video recordings will be on OWASP London YouTube channel in a few days • Attendees (you!)

Hackathon & CTF Coming Hackathon & CTF Event Dates 
 Will be Published Soon!

OWASP Summit 2018 Next OWASP Summit will be in April 2018 Same location

Staying in Touch 
 OWASP London Join The OWASP London Mailing List: http://lists.owasp.org/mailman/listinfo/owasp-london Follow us on Twitter “Like” us on Facebook 
 @ owasplondon https://www.facebook.com/OWASPLondon Slack : owasp.slack.com #chapter-london Watch us on YouTube : YouTube.com/OWASPLondon OWASP London Provisional Dates of future meetings: Visit OWASP London Chapter webpage 23 November 2017 https://www.owasp.org/index.php/London

Pub Time! • Networking and Drinks at: • Greenwood London (across the road) • Upstairs!