addressalign-toparrow-leftarrow-rightbackbellblockcalendarcameraccwchatcheckchevron-downchevron-leftchevron-rightchevron-small-downchevron-small-leftchevron-small-rightchevron-small-upchevron-upcircle-with-checkcircle-with-crosscircle-with-pluscrosseditemptyheartfacebookfolderfullheartglobegmailgoogleimagesinstagramlinklocation-pinmagnifying-glassmailminusmoremuplabelShape 3 + Rectangle 1outlookpersonplusprice-ribbonImported LayersImported LayersImported Layersshieldstartickettrashtriangle-downtriangle-uptwitteruseryahoo

Join us for food, drink and good networking at Denver OWASP July Meeting

Please come join us for our July OWASP Denver Meeting.  Enjoy some great food, drinks and networking courtesy of Solutions II.

Presentation:

Static vulnerability analysis is the practice of testing non-running software for application vulnerabilities. It is often referred to as SAST, white box testing, or automated code review. In this session we will cover some of the hows and whys of static analysis and deep dive some of the common issues users of SAST technologies often encounter. Topics will include data flow analysis and taint propagation, scan noise, and partial code scanning, specifically around OWASP Top 10 issues. The material should provide value to anyone with an interest in application security, not just static analysis practitioners.


Bio:
Andrew Earle is a Security Solutions Architect for HP Enterprise Security Products (ESP). Andy has spent 5 years designing and delivering application security programs, technology, and services for US Federal and commercial customers, specifically around HP's Fortify appsec products. Andy was previously the product manager for a high assurance multi-level secure operating system at BAE Systems, and Presales Engineer for various web development and mobile security firms. Andy has spoken extensively on application security topics, most recently at OWASP's SnowFROC 2013, the RMISC conference, SANS AppSec 2013, and HP Protect. Early experience includes software engineering, mobile application development, and lifeguarding at his neighborhood pool. Andy is a CISSP and CSSLP, and has a B.S. in Systems Engineering from the University of Virginia.

Join or login to comment.

  • Roger

    For my first OWASP meeting, I found it to be a great event and definitely look forward to future meetings! Great content, good discussions and wonderful industry folks.

    1 · July 16, 2014

    • Frank

      Thanks Roger, glad you enjoyed it

      July 16, 2014

  • Roger

    For my first OWASP meeting, I found it to be a great event and definitely look forward to future meetings! Great content, good discussions and wonderful industry folks.

    July 16, 2014

  • Alexander S.

    I cant come this month but still interested.

    1 · July 16, 2014

  • Yon

    Frank and Steve, I've got the ten trivia questions that you requested last time. Hopefully some illumination results.

    1 · July 16, 2014

Our Sponsors

  • Solutions II

    Solutions II offers us venue, food and drinks.

People in this
Meetup are also in:

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy