OWASP European Tour 13 - Barcelona, España (Top 5)

Barcelona
jueves, 13 de junio de 2013
OWASP European Tour 13 - Barcelona, España (Top 5)
jueves, 13 de junio de 2013 9:00 - 13:00 (Central European Time)

Universitat Ramon Llull, La Salle - URL
Sant Joan de La Salle, 42
E-08022
Barcelona
España

OBJETIVOS

Esta capacitación incorporará las técnicas de ataque a plataformas Web más importantes en la actualidad, estandarizados mediante la norma OWASP Top 5. El curso presentará al alumno la forma de realizar estos ataques, y las contramedidas necesarias para mitigar su riesgo en sus desarrollos. La clase contará con contenido teórico y demostraciones prácticas e interactivas de laboratorio.

ORIENTACION

El mismo, está orientado a Desarrolladores, administradores de bases de datos, líderes de proyecto, analistas de sistemas.

DURACION
El curso consta de 4 hs, siendo impartido en media jornada
Se calcula un Coffee Break a la mitad del curso.

PROGRAMA

OWASP Top 5 basics:
• A1-Injection
• A2-Cross Site Scripting (XSS)
• A3-Broken Authentication and Session Management
• A4-Insecure Direct Object References
• A5-Cross Site Request Forgery (CSRF)

REQUISITOS:

• Máquina virtual con Linux (Backtrack o Kali recomendado)

DURACION: 4 horas

PERFIL DEL INSTRUCTOR

Matias Katz is an IT architect and a security specialist. He's CISSP, CEH and MCSE certified, and has 10 years of experience in the field, focusing in the implementation of security audits, in infrastructures and critic applications for big organizations, both private and public.

After working at IBM for several years, in 2008 Matias founded Mkit Argentina (link: http://www.mkit.com.ar), a company that specializes in performing security audits, vulnerability analysis and penetration tests to organizations, companies and the public sector. The company also gives training of a high technical level for companies, organizations and end-users.

Matias also works as an external consultant for the computer crimes division of the federal police department in Argentina, where he collaborates in open cases through the acquirement of digital evidence and performing active investigations for the potential suspects.

He is a professor in 3 universities in Argentina, both in engineering courses and information security post-graduate degree courses.

He has presented at some of the most important security conferences, like BlackHat, Ekoparty, H2HC, Campus Party. He has dozens of published papers, and has created many tools used daily by security professionals world-wide, for their security audits.



 

Información de contacto