addressalign-toparrow-leftarrow-rightbackbellblockcalendarcameraccwcheckchevron-downchevron-leftchevron-rightchevron-small-downchevron-small-leftchevron-small-rightchevron-small-upchevron-upcircle-with-checkcircle-with-crosscircle-with-pluscrossdots-three-verticaleditemptyheartexporteye-with-lineeyefacebookfolderfullheartglobegmailgooglegroupsimageimagesinstagramlinklocation-pinm-swarmSearchmailmessagesminusmoremuplabelShape 3 + Rectangle 1outlookpersonJoin Group on CardStartprice-ribbonImported LayersImported LayersImported Layersshieldstartickettrashtriangle-downtriangle-uptwitteruseryahoo

Security vulnerabilities in Java web apps and Vagrant


5:30-6:00: Networking and Food

Food, Soda, Beer and Networking. We are grateful to Cody Powell from TEksystems for their continued sponsorship of the Food and Soda! Also, thanks to Mike Henninger of BWBacon for supplying the beer.

6:00-6:10: Announcements

6:10-7:10: Security vulnerabilities in Java web apps by Steve Kosten

Steve Kosten will be presenting/demoing of some common security vulnerabilities found in Java web applications.  He will also address mitigation techniques for these vulnerabilities.

About Steve Kosten:

Steve Kosten is a former Java developer and an Information Security and Application Security Specialist who has worked with major financial institutions and defense organizations addressing their information security issues.  He is also the Chapter president for Denver Open Web Application Security Project, an organization that is focused on evangelizing application security.


7:10-7:30: Break

7:30-8:30: Vagrant: For the Weird and Strange by Andy Ennamorato.

The Java write once, runs everywhere dream is still alive...right? When it's not (or when you just want a clean environment to develop and test in), you might take advantage of Vagrant, an open source project that helps bring a repeatable process to your development environment. This introduction to Vagrant will introduce you to the basics of using development virtual machines and give you just enough info to be dangerous. Or weird and strange, your choice.

About Andy Ennamorato:

Andy Ennamorato, aka @virtualandy, hails from Denver by way of Flori-duh. He can be found in the deep dark basements of Buckley AFB where he works, or at many of the local tech meetups in the area when he's not at home with his wife and son. Chat with him about baseball, technology, beer or sushi and you'll have a laughing good time.


8:30: Door prizes:

Amazon Gift Cards - provided by Lea Holmboe of ECS

JetBrains IDE License

ZeroTurnaround JRebel License

O'Reilly and Pearson books

8:45: Networking/Food/Drinks at Old Chicago.

Our new sponsor,, will be hosting the food and drinks at Old Chicago (1415 Market St).  Come join us for further discussion on topic of the night and whatnot.

Join or login to comment.

  • Andy E.

    During my presentation I mentioned and did an extremely quick demo of vert.x, the asynchronous IO framework that runs on the JVM (Java, JavaScript, Groovy, Ruby, Scala, Clojure...whatever language you can think of Vert.x will run it). Anyway, just wanted to leave a link:
    They are nearing a 2.0 release which should be pretty cool. I'm going to post it as an 'issue' on the DJUG Github repo ( so if you want to volunteer to talk about it, that'd make me happy! :)

    June 17, 2013

  • Michael A. F.

    appropriate to work on both accounts! We are currently becoming PCI compliant and OWASP training is part of it. The Vagrant app is a nicer way to get cozy with virtual machines so that is great. Enjoyed both presentations for different reasons. I think security is one of those things that people don't like to think about but pays great dividends if you can make yourself be disciplined about it. The speaker carried that message loud and clear. The Vagrant speaker was fun and informative. :-)

    June 13, 2013

    • Andy E.

      Thanks Michael, glad you enjoyed it.

      June 17, 2013

  • Andy E.

    June 13, 2013

  • Colleen K.

    Don't be offended if I come late. I'm going home to remind my children what I look like then will come over. I will be at DenverJS on Thursday night too.

    1 · June 10, 2013

    • Greg O.

      No worries - see you soon. FYI: the order was flipped and Vagrant was first.

      June 12, 2013

    • Colleen K.

      Andy spoke to DenverJS in March...I feel like a groupie

      1 · June 12, 2013

  • Caitlin W.

    New to the Denver area and hoping to meet some other developers!

    June 10, 2013

  • Peter D.

    I didn't think there were security holes? :-)

    June 10, 2013

  • Steve N.

    I won't get off work until 6:00, but I'll get there as soon as I can

    June 8, 2013

  • Gary G.

    Money #Bitcoin & the Cloud: It's all just data streams, anyway! @galvanize Denver Meetup 6/18

    June 8, 2013

  • Lianne W.

    I am looking for Jr Java Developers in Denver! Looking to hire and start this month. Please message me or call @ 720/[masked] and [masked]. Thanks!

    June 6, 2013

  • Andy E.

    I'm presenting - guess
    I better RSVP. =P

    1 · June 5, 2013

  • Matt H.

    Java Dev/Student looking to network in hopes of finding a job, meet new people, and find out what's new and exciting in the Java world.

    June 5, 2013

  • Matt M.

    Hello DJUG, I am Recruiter local to Denver and I work with some of the top companies in town to match top quality developers with top quality companies. If you would be interested in exploring new opportunities or just want to see what's out there please dont hesitated to contact me at [masked]

    May 22, 2013

  • Gary G.

    "Building Apps with Cloud Services" Meetup this Tues Cloud Foundry Founder - Chris Richardson

    May 19, 2013

Our Sponsors

People in this
Meetup are also in:

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy