OWASP Sioux Falls Chapter Meeting

Agenda:

12:30 Pizza and Announcements - sponsored by SDN Communications

1:00 Cuckoo Sandbox

Nicholas Penning, a lead security analyst with the State of South Dakota's Bureau of Information and Telecommunications (BIT), will be discussing the open source automated malware analysis tool Cuckoo Sandbox. This tool can be used in a number of ways to protect organizations from malware outbreaks that use malicious files as a method of infection. Files uploaded through web applications are one attack vector, and Cuckoo Sandbox can be used to mitigate this risk.

2:00 Burp, ZAP, and Other Funny Sounds

We will also spend some time looking at two popular intercept proxy tools, Burp and OWASP ZAP. We will discuss how these tools can be used by security practitioners to test web applications, and we will take a little time to download Burp and perform a few tests against a purposefully vulnerable website hosted in the cloud. Bring a laptop that will allow you to run a Java application (I know, I know...).

3:00 What's Next for OWASP Sioux Falls

We will have a short discussion about the future of the Sioux Falls chapter, including what things you would like to see from us going forward. We are also looking for volunteers to serve on a steering committee for our group, which will be discussed.