0x01 Securing the Web

Securing the Web is the second meetup of OWASP Beja chapter which will be held on May 23rd, 2024, at 14:30 sponsored by Checkmarx.

Schedule

14:30 - Welcome Notes by OWASP Beja chapter leadership team
14:35 - Purple Team Approach Towards Confluence RCE by Paulo Viegas
15:00 - Newton's Third Law: Static vs. Dynamic Abusers by Diogo Sousa
16:00 - Snacks & Drinks sponsored by Checkmarx

Talks

Purple Team approach towards Confluence RCE
by Paulo Viegas, Threat Detection Analyst @ Siemens

Talk about the value of collaboration between the red and blue team with a practical example.

About the Speaker
Curious Blue Teamer with special taste for malware and forensics.

---

Newton's Third Law: Static vs. Dynamic Abusers
by Diogo Sousa, Engineering Manager @ Canonical

If you offer a service on the web, odds are that someone will abuse it. Be it an API, a SaaS, a PaaS, or even a static website, someone somewhere will try to figure out a way to use it to their own needs. In this talk we'll compare measures that are effective against static attackers and how to battle a dynamic attacker who adapts to your counter-measures.

About the Speaker
An opinionated individual with an interest in cryptography and its intersection with secure software development.