OWASP AppSec NYC 2008 -- Will you be there?
The OWASP AppSec NYC 2008 conference is only a couple days away, with training starting at 9AM on Monday. I will be attending the "Advanced Web Application Testing" training course with Eric Sheridan of Aspect Security. I'm really looking forward to this conference, as it'll give me the opportunity to meet up with old friends and meet new ones. My employer is also sponsoring the conference, so you might be able to spot me in the vendor area throughout Wednesday and Thursday. I don't plan to dwell too long there though, but lucky for you we'll be handing out all sorts of little goodies and plan to raffle off something I really wish I had. ;)
Shoot me an email or post a comment if you want to meet up [marcin (splat) tssci-security.com]. I'll be everywhere.
My agenda, hopefully includes the following talks:
| Time | Presentation |
| Wednesday | |
| 12:00-12:45 | Framework-level Threat Analysis: Adding Science to the Art of Source-code review |
| 14:00-14:45 | Industry Outlook Panel |
| 15:00-15:45 | OWASP Testing Guide - Offensive Assessing Financial Applications w3af - A Framework to own the web |
| 16:00-16:45 | Case Studies: Exploiting application testing tool deficiencies via "out of band" injection |
| 17:00-17:45 | Threading the Needle Multidisciplinary Bank Attacks |
| Thursday | |
| 09:00-09:45 | OWASP Web Services Top Ten |
| 10:00-10:45 | "Help Wanted" 7 Things You Need to Know APPSEC/INFOSEC Employment Building a tool for Security consultants: A story of a customized source code scanner |
| 12:00-12:45 | Next Generation Cross Site Scripting Worms |
| 14:00-14:45 | Practical Advanced Threat Modeling |
| 16:00-16:45 | Corruption |