Archive for the ‘meetups’ Category

« Older Entries

OWASP DC this week, CapSec next week

Monday, April 20th, 2009

Just a reminder about some upcoming events:

This Wednesday, Jon Rose will be presenting his Deblaze tool, and I will be talking about some of the recent activity in OWASP, including (hopefully) the official announcement of AppSec US 2009 being hosted in November in Washington DC.

OWASP DC
Thursday April 22nd 6:30 PM

Duques Hall Rm 650D
George Washington University
2201 G St. NW
Washington DC 20037

Please note that this is NOT the same room as last time. It’s nearby, and hopefully we’ll have signs up to show you the way.

Next week, CapSec DC will have its April incarnation at Stetson’s. Hopefully this time we will outnumber marauding birthday parties. Though it was nice to have free balloons.

CapSec DC
Wednesday April 29th, 7:00 PM

Stetson’s
1610 U St NW
Washington DC 20009

Posted in CapSecDC, OWASP, OWASP AppSec, Web Security, meetups, web people | No Comments »

Synchronicity?

Thursday, March 19th, 2009

I managed to make it to the informal #novasecluncheon meetup in DC today.

A conversation topic was Rob Fuller and Rafal Losrecent run-in’s with an insecurely configured tinyurl (which was picked up by the media). Discussion also followed about the issues with a site being owned (bad enough) with the exponential implications of problems going through that site (much worse).

Once everyone gets done with lunch and back to their routine, what do we see? It appears that someone has managed to XSS Twitter successfully.

Is that timing, or what?

I’ve been meaning to save this up for another post, but now is also a great time to mention the Longurl Mobile Expander I’ve been playing around with. It’s a link expander Add-on for Firefox that allows you to preview “shortened” url’s by mousing over them before you click.

Click with care . . .

Posted in Twitter, Web Security, XSS, information security, meetups | 1 Comment »

March DojoSec — Hacking iPhones, snort, and Marcus Ranum

Sunday, March 8th, 2009

This past Thursday, I attended DojoSec in Columbia MD, along with a bunch of people from CapSec, OWASP DC, and a few OWASP alum from Columbia. The event was fairly sizable, with an almost standing room crowd (my guess is at least 70, if not more).

This event is put on by Marcus J. Carey, of Sun Tzu Security. The format is “dinner and talks,” and this particular evening consisted of three talks and pizza. The talks for March were about iPhone forensics, using Snort as a network forensics tool, and debunking the idea of Cyber War as  viable concept.

(more…)

Posted in information security, meetups | 2 Comments »

Events this evening

Thursday, March 5th, 2009

In case you are one of the few who’ve missed the super-secret news that no one’s supposed to know, Dan Kaminsky will be speaking at HacDC tonight in Adams Morgan/Columbia Heights (depending on how you score it) at 8 PM.

It’s not clear what he’s going to be talking about — apparently he may speak about “the DNS flaw” from last year, and there may also be antics with firewalls. The rumor is that there’s going to be some sort of announcement Monday, and that he’s going to do a live-fire exercise at HacDC if the logistics can be worked out as a preview.

Having seen Dan’s last DNS talk (“the big one“) at Black Hat last year, and having already made plans, I’ll be heading up to DojoSec in Columbia this evening to see Marcus Ranum and others speak there.

I apologize for not promoting the existence of DojoSec more, but it was kind of hard to find information out about the specifics, and I’m viewing tonight as a scouting mission.

Posted in information security, meetups, web people | No Comments »

CapSec DC and Refresh DC this Wednesday

Monday, February 23rd, 2009

Two events going on this Wednesday — you’ll have to choose, unfortunately.

CapSec DC is back at Stetson’s in the UPSTAIRS bar (where I’ll be), and Refresh DC will be in Georgetown.

CapSec DC
Wednesday February 25th, 7:00 PM

Stetson’s
1610 U St NW
Washington DC 20009

and

Refresh DC
Wednesday February 25th, 7:00 PM

The Center for Digital Imaging Arts at Boston University
1055 Thomas Jefferson Street NW
Washington, District of Columbia 20007

I’ll see those of you who make it out to CapSec!

Those of you who go to refresh, please find out wtf is up with that Tropicana branding. It makes me want a different brand of juice like nothing else ever has.

Posted in CapSecDC, RefreshDC, meetups | No Comments »

« Older Entries