Sched.com Conference Mobile Apps
OWASP AppSec USA 2014
has ended
Create Your Own Event
OWASP AppSec USA 2014
Schedule
Simple
Expanded
Grid
By Venue
Speakers
Artists
Sponsors
Volunteers
Search
or browse by date + venue
Registration
All
Open Mic
Session
All
Breakers
Builders
Defenders
DevOps
Keynote
Management
Special Events
All
Bug Bash
Career Fair
Reception
Sponsors
WaspNest CTF
Training
All
Breakers
Builders
Defenders
Management
Workshop
All
Birds of a Feather
Leaders
OWASP Project Summit
Projects
Skills Lab
Sign up
or
log in
to bookmark your favorites and sync them to your phone or calendar.
menu
Menu
Log in
Sign up
Schedule
Speakers
Artists
Sponsors
Volunteers
Search
tune
Filter sessions
Tuesday
, September 16
Denver Ballroom I
8:00am •
(Separate registration required) Ruby on Rails - Auditing & Exploiting the Popular Web Framework (day 1 of 2)
Denver Ballroom II
8:00am •
(Separate registration required) Cryptography for the Modern Developer (day 1 of 1)
Denver Ballroom III
8:00am •
(Separate registration required) OWASP Top 10 – Exploitation and Effective Safeguards (day 1 of 2)
Denver Ballroom IV
8:00am •
(Separate registration required) Advanced Web Penetration Testing (day 1 of 2)
Denver Ballroom V
8:00am •
(Separate registration required) Securing Mobile Devices and Applications (day 1 of 2)
Denver Ballroom VI
8:00am •
(Separate registration required) Malware Analysis Crash Course (day 1 of 2)
Gold Coin [Project Summit]
9:00am •
Open Workshops
Independence [Skills Lab]
7:30pm •
Bug Bash
Registration Booth
6:30am •
Training Registration
Wednesday
, September 17
Colorado Ballroom [Assembled Conference]
6:00pm •
WASPY Awards 2014 Ceremony
6:00pm •
Welcome Reception
Denver Ballroom I
8:00am •
(Separate registration required) Ruby on Rails - Auditing & Exploiting the Popular Web Framework (day 2 of 2)
Denver Ballroom III
8:00am •
(Separate registration required) OWASP Top 10 – Exploitation and Effective Safeguards (day 2 of 2)
Denver Ballroom IV
8:00am •
(Separate registration required) Advanced Web Penetration Testing (day 2 of 2)
Denver Ballroom V
8:00am •
(Separate registration required) Securing Mobile Devices and Applications (day 2 of 2)
Denver Ballroom VI
8:00am •
(Separate registration required) Malware Analysis Crash Course (day 2 of 2)
Gold Coin [Project Summit]
9:00am •
Open Workshops
1:00pm •
OWASP Media Project Conference Setup
Independence [Skills Lab]
7:30pm •
Bug Bash
Penrose 1 [Open Mic]
8:00am •
(Separate registration required) Managing Web & Application Security - OWASP for Senior Managers (day 1 of 1)
Registration Booth
6:30am •
Training Registration
5:00pm •
Early Registration
Thursday
, September 18
Colorado Ballroom A-D [Mgmt/DevOps]
9:30am •
Building Your Application Security Data Hub: The Imperative for Structured Vulnerability Information
10:30am •
AppSec Survey 2.0: Fine-Tuning an AppSec Training Program Based on Data
1:00pm •
11,000 Voices: Experts Shed Light on 4-Year Open Source & AppSec Survey
2:00pm •
Lean Security for Small or Medium Sized Business
3:00pm •
Not Go Quietly: Adaptive Strategies and Unlikely Teammates
Colorado Ballroom E [Defenders]
9:30am •
IEEE Computer Society's Center for Secure Design - Helping You Design More Secure Software
10:30am •
Anatomy of memory scraping, credit card stealing POS malware
1:00pm •
Project Monterey or How I Learned to Stop Worrying and Love the Cloud
2:00pm •
Red Phish, Blue Phish: Improved Phishing Detection Using Perceptual Hashing
3:00pm •
Blended Web and Database Attacks on Real-time, In-Memory Platforms
Colorado Ballroom F [Breakers]
9:30am •
Mobile Security Attacks: A Glimpse from the Trenches
10:30am •
Use After Free Exploitation
1:00pm •
Static Analysis for Dynamic Assessments
2:00pm •
Runtime Manipulation of Android and iOS Applications
3:00pm •
Top 10 Web Hacking Techniques of 2013
Colorado Ballroom G-J [Builders]
9:30am •
Modern Web Application Defense with OWASP Tools
10:30am •
Hacking .NET/C# Applications: Defend By Design
1:00pm •
iOS App Integrity: Got Any?
2:00pm •
Your Password Complexity Requirements are Worthless
3:00pm •
Client-side security with the Security Header Injection Module (SHIM)
Colorado Ballroom [Assembled Conference]
8:00am •
Keynote: Bruce Schneier - The Future of Incident Response
4:30pm •
Keynote: Renee Guttmann - CISO Perspectives: Aligning Secure Software Application Development with Business Interests
7:00pm •
Code Brew
7:00pm •
Reception
7:15pm •
Homebrewing 101
8:30pm •
Jason Alan Magic
Denver Ballroom [Sponsor Expo]
9:00am •
Coffee Break
9:00am •
Sponsor Expo
11:30am •
Lunch
12:00pm •
Career Fair
4:00pm •
Coffee Break
Gold Coin [Project Summit]
9:00am •
OWASP Project Summit
9:00am •
OWASP ESAPI Bug Squash-a-thon
1:00pm •
OpenSAMM Workshop Play-books, PCI-SAMM Matrix, Project QA
1:00pm •
OWASP Reverse Engineering and Code Modification Prevention Project (Mobile)
1:00pm •
OWASP .NET Project Planning and Content Creation
1:00pm •
OWASP ASIDE Project Planning
Independence [Skills Lab]
9:30am •
Zed Attack Proxy (Zap) 101
10:30am •
Nmap 101
1:00pm •
CSRF 101
2:00pm •
CMS Hacking 101
3:00pm •
App Server Hacking 101 (clusterd)
7:30pm •
Bug Bash
Matchless [OWASP Workshop]
9:30am •
Starting a chapter
10:30am •
Growing membership
1:00pm •
Finding speakers and other meeting ideas
2:00pm •
Community outreach
3:00pm •
Hosting a conference
Penrose 1 [Open Mic]
9:30am •
Birds of a Feather (topic to be determined at AppSec USA)
10:30am •
Birds of a Feather (topic to be determined at AppSec USA)
12:00pm •
Birds of a Feather (topic to be determined at AppSec USA)
1:00pm •
Open Mic (Riddle me this, Batman: DHS, Open Source and SWAMP)
2:00pm •
Open Mic (WAF is not enought! Why your data is still at risk, even if you use web applications firewall)
3:00pm •
Open Mic (The 7 deadly sins of WordPress security)
Penrose 2 [WaspNest CTF]
9:00am •
Capture the Flag
Registration Booth
6:30am •
Registration
Friday
, September 19
Colorado Ballroom A-D [Mgmt/DevOps]
9:30am •
The DevOps of Things
10:30am •
DevOps and Security: The Facts, The Myths, The Legend
1:00pm •
Where the Security Rubber Meets the DevOps Road
2:00pm •
Implications & Opportunities at the Bleeding Edge of DevOps
3:00pm •
Ground Truths of a Rugged DevOps Practitioner
Colorado Ballroom E [Defenders]
9:30am •
Bringing a Machete to the Amazon
10:30am •
Reversing Engineering a Web Application - For Fun, Behavior & WAF Detection
1:00pm •
Auto-Scaling Web Application Security in the Cloud
2:00pm •
Catch me if you can: Building a Web Malware Analyzer using Machine Learning
3:00pm •
Cloud Security at Scale and What it Means for Your Application
Colorado Ballroom F [Breakers]
9:30am •
Warning Ahead: Security Storms are Brewing in Your JavaScript
10:30am •
Hacking .NET(C#) Applications: The Black Arts (ASM attacks)
1:00pm •
When you can't afford 0days: Client-side exploitation for the masses
2:00pm •
Hacking the Oracle Application Framework: A case study in deep-dive pen testing
3:00pm •
Headless Browser Hide and Seek
Colorado Ballroom G-J [Builders]
9:30am •
Ten Secrets to Secure Mobile Applications
10:30am •
Threat Modeling Made Interactive!
1:00pm •
Stop Chasing Vulnerabilities - Introducing *Continuous* Application Security
2:00pm •
From the Ground Up
3:00pm •
OWASP A9: A Year Later - Are you still using components with known vulnerabilities?
Colorado Ballroom [Assembled Conference]
8:00am •
Keynote: Gary McGraw - Bug Parades, Zombies, and the BSIMM: A Decade of Software Security
4:30pm •
Keynote: OWASP Global Board
5:30pm •
Sponsor raffle and prize giveaway (must be present to win!)
5:30pm •
Capture the Flag: Awards Ceremony
Denver Ballroom [Sponsor Expo]
9:00am •
Sponsor Expo
9:00am •
Coffee Break
11:30am •
Lunch
4:00pm •
Coffee Break
Gold Coin [Project Summit]
9:00am •
OWASP Developer Guide Writing Session
9:00am •
OWASP Project Summit
9:00am •
OpenSAMM Workshop Play-books, PCI-SAMM Matrix, Project QA
9:00am •
OWASP WebGoat 6.0 Project Planning and Beyond
9:00am •
OWASP Reverse Engineering and Code Modification Prevention Project (Mobile)
1:00pm •
OWASP Mobile Top Ten Project Planning and Call for Input
Independence [Skills Lab]
9:30am •
Welcome to Hackazon - Get your favorite app scanner ready!
10:30am •
Penetration testing code coverage
1:00pm •
Customizing Burp Suite - Getting the most out of your extensions
2:00pm •
Introduction to Golismero (The Web Knife)
3:00pm •
Pwning the Pawns with WiHawk
Matchless [OWASP Workshop]
9:30am •
Starting a project
10:30am •
Funding a project
1:00pm •
Marketing a project
2:00pm •
Recruiting developers
3:00pm •
Hosting a project summit
Penrose 1 [Open Mic]
9:30am •
Birds of a Feather (topic to be determined at AppSec USA)
10:30am •
Birds of a Feather (topic to be determined at AppSec USA)
12:00pm •
Birds of a Feather (topic to be determined at AppSec USA)
1:00pm •
Open Mic (Turing Tests and Account Takeover)
2:00pm •
Open Mic (The Myth of .NET (ASP) Authentication Expiration)
Penrose 2 [WaspNest CTF]
9:00am •
Capture the Flag
Registration Booth
7:00am •
Registration
TBA
7:00pm •
Downtown Denver Brewery Tour
Timezone
OWASP AppSec USA 2014
America/Denver
Filter By Date
OWASP AppSec USA 2014
Sep 16
-
19, 2014
Tuesday
, September 16
Wednesday
, September 17
Thursday
, September 18
Friday
, September 19
Filter By Venue
Denver Marriott City Center, Denver, Colorado
Sort schedule by Venue
Colorado Ballroom A-D [Mgmt/DevOps]
Colorado Ballroom E [Defenders]
Colorado Ballroom F [Breakers]
Colorado Ballroom G-J [Builders]
Colorado Ballroom [Assembled Conference]
Denver Ballroom I
Denver Ballroom II
Denver Ballroom III
Denver Ballroom IV
Denver Ballroom V
Denver Ballroom VI
Denver Ballroom [Sponsor Expo]
Gold Coin [Project Summit]
Independence [Skills Lab]
Matchless [OWASP Workshop]
Penrose 1 [Open Mic]
Penrose 2 [WaspNest CTF]
Registration Booth
TBA
Filter By Type
Registration
All
Open Mic
Session
All
Breakers
Builders
Defenders
DevOps
Keynote
Management
Special Events
All
Bug Bash
Career Fair
Reception
Sponsors
WaspNest CTF
Training
All
Breakers
Builders
Defenders
Management
Workshop
All
Birds of a Feather
Leaders
OWASP Project Summit
Projects
Skills Lab
Filter sessions
Apply filters to sessions.
close
Dates
Tuesday
, September 16
Wednesday
, September 17
Thursday
, September 18
Friday
, September 19
Types
Registration
All
Open Mic
Session
All
Breakers
Builders
Defenders
DevOps
Keynote
Management
Special Events
All
Bug Bash
Career Fair
Reception
Sponsors
WaspNest CTF
Training
All
Breakers
Builders
Defenders
Management
Workshop
All
Birds of a Feather
Leaders
OWASP Project Summit
Projects
Skills Lab
Venues
Colorado Ballroom A-D [Mgmt/DevOps]
Colorado Ballroom E [Defenders]
Colorado Ballroom F [Breakers]
Colorado Ballroom G-J [Builders]
Colorado Ballroom [Assembled Conference]
Denver Ballroom I
Denver Ballroom II
Denver Ballroom III
Denver Ballroom IV
Denver Ballroom V
Denver Ballroom VI
Denver Ballroom [Sponsor Expo]
Gold Coin [Project Summit]
Independence [Skills Lab]
Matchless [OWASP Workshop]
Penrose 1 [Open Mic]
Penrose 2 [WaspNest CTF]
Registration Booth
TBA
