OWASP OC April meeting: Keeping Hacks Away from Your Hacked-Together App

Speaker: James Shewmaker, President, BLUEN0TCH

Topic: Keeping Hacks Away from Your Hacked-Together App

Abstract:
The real word is ripe with kludgy systems. Scripts are the duct tape of the digital world—useful but not resilient. James will speak about security issues encountered during development of the Bunker011 Hacking Game Project: script security, REST shims, and "breakable" modules. Consider the fact that your application will be hacked; make it hackable in a specific way—for easy recovery.

Speaker Bio:
James Shewmaker is the founder and principal consultant at Bluenotch Corporation, Long Beach, California, which provides customized security services focusing on investigations, penetration testing, and analysis.

James authored and maintains the post-exploitation content in the SANS Security 660: Advanced Penetration Testing, Exploit Writing, and Ethical Hacking course. Before becoming a SANS Certified Instructor in 2009, his creative technical work led him on many adventures, including "The Great Translator Invasion of 2003".

James led the development and operations for NetWars as a US Cyber Challenge game in June 2009. He is currently developing an independent cyber challenge, Bunker011, and is involved in the US Cyber Challenge as an instructor at Cyber Camps. James regularly teaches a Tactical Offense and Defense day at SANS Security events.

Schedule:
6:00pm Taco bar, Drinks & Networking
6:40pm Presentation (followed by Q&A)

A raffle will be held at the end of the meeting for OWASP swag and free conference passes to the ISSA LA Summit, LayerOne and AppSec Cali 2020 conferences. You must be present to win.