Following the White Rabbit Blog : hacking demonstration

Let's talk "Rich Internet Applications"

RafalLos — Thu, 02 Apr 2009 14:10:00 GMT

Hello again everybody! My apologies for going radio silent for a bit - it's been a rough March with travel and visiting many of you over the past several weeks... and guess what? it's not going to be any better in the near future! The good news is that for those of you living in Canada (Ottawa, Montreal, Toronto) I'll be seeing you next week at the OWASP meetings scheduled.

Monday - April 6th - Ottawa, ON, CA
Tuesday - April 7th - Montreal, QC, CA
Wednesday - April 8th - Toronto, ON, CA

The topic is "Rich Internet Applications" and while the talk isn't currently named (officially) you can go cast your vote thru tomorrow on the "Name That Talk" poll going on on my Preach Security blog, please take a moment to vote!

I will be hanging out afterwards to meet up with everyone... so if you can make it, let's chat!

Attention App Sec Professionals in Ottawa and Montreal, Canada!

RafalLos — Thu, 04 Sep 2008 04:28:00 GMT

... we've got a workshop coming to Ottawa and Montreal coming in September. You read it right... I'll be up in Ottawa, CA on Sept. 22nd, and Montreal, CA on Sept. 23rd giving 2 feature-packed workshops that you can't afford to miss if you have a stake in the web application security space. I've included some of the details below, obviously please contact me or Luc Laforest (see below) directly to get going and sign up... hope to see you there!

[ Workshop Brief ] Are you interested in Web Application Security? Have you ever wondered how the "black hats" break into web applications so easily? These topics and more will be covered when we take a trip down the rabbit hole, and dig deep into the many sides of web application security. We'll cover everything from attack methodology, security best-practices, defense in-depth, and yes... some real-world hacking! I will also talk you through building a holistic web application security program with tips from real-world successes aimed at helping you accomplish your goals. Come join us, bring your questions, concerns and curiosity - you won't be disappointed!

[ Topics Covered ]

Latest hacking techniques from "the real world"
News, commentary and Information from the world of web application security
Defensive coding techniques to avoid being tomorrow's news
Business-level thinking on building a holistic web application security program
Benefits of integrated security tools as part of a complete SDLC [Software Development LifeCycle]

[ How to Register ] Send an email to Luc Laforest (luc.laforest@hp.com) with the date you'd like to attend, and some of your business-card information and we'll get you signed up! These events are at NO COST to you, zero, zip, zilch, nada, niet, nic.

[ Who Should Attend ] Security professionals, developers, IT managers responsible for web applications and IT Security professionals. Basically - if you have an interest in securing web applications, you need to be here.

[[ Ottawa, CA ]]

September 22nd, 2008
Hotel Indigo Ottawa
Indigo Room
123 Metcalfe Street, Ottawa, ON K1P 5L9
(613)231-6555
http://www.ottawadowntownhotel.com/
Lunch and Registration 12:00-12:30
Presentation 12:30-2:00
Break 2:00-2:15
Presentation 2:15-3:30
Q & A 3:30-4:00

[[ Montreal, CA ]]
September 23rd, 2008
Hotel Place D'Armes
St. Jaques Room
55 St-Jacques Street
West Old Montreal, Quebec H2Y 3X2
http://www.hotelplacedarmes.com/
Breakfast and Registration 8:30-9:00am
Presentation 9:00-10:15am
Break 10:15-10:30am
Presentation 10:30-11:30am
Q & A 11:30-12:00

St. Louis, MO - Web Application Security Workshop

RafalLos — Thu, 17 Jul 2008 05:21:00 GMT

7.17.08, 12:38am CDT...
Airport delays are a horrible way to finish out a business trip... just puts such a bummer on everything. As you can tell if you're reading this, it's after midnight and I just got home and unwound. My flight was supposed to leave St. Louis, MO at 6:46pm... suffice it to say we never left on time because of an O'Hare "ground stop"... which was due to heavy storms rolling throug the area. Well, when all the waiting, and uncertainty, and sitting on the tarmac and waiting and in-flight turbulence was over and we landed... wouldn't you have guessed it - not a drop of rain to be found at O'Hare... lovely.

I'd like to extend a very hearty thank you to everyone who participated in Wednesday's workshop in St. Louis, MO. It was a pleasure having everyone there, and getting so much participation from the audience. It really makes the flight delays and prep time well worthwhile when you all provide a 2-way conversation rather than me just speaking and showing powerpoint slides. I welcome feedback, questions, comments and requests for follow-up - I do these for groups large (like Wednesday) and small (in a more intimate setting with your company) and we always manage to have a good time and maybe on occassion learn something.

So once again - thanks for coming, thanks for staying over an hour extra to hear about all the exciting stuff we here at the Application Security Center [HP ASC] have going on.

Cheers & safe travels.

/Rafal