What we’re about
We are a place to come and meet local developers and information security professionals, share ideas, and learn.
You will find us informal, approachable, and thankful for your assistance. We encourage and welcome beginners. We are an open, tolerant, and inclusive organisation that accepts all races, genders, creeds, abilities, things, and ideas with the exception of one - Hate: Hate has no home at OWASP Ottawa.
Software powers the world, but insecure software threatens safety, trust, and economic growth. The Open Web Application Security Project (OWASP) is dedicated to making application security visible by empowering individuals and organizations to make informed decisions about true application security risks.
OWASP Foundation is a 501(c)(3) not-for-profit worldwide charitable organization, OWASP does not endorse or recommend commercial products or services. Instead, we allow our community to remain vendor neutral with the collective wisdom of the best individual minds in security worldwide. This simple rule is the key to our success since 2001.
For more information visit: http://www.owasp.org or come to a meeting, they are FREE and open to EVERYONE!
https://owasp.org/www-chapter-ottawa/
Upcoming events
1
OWASP Ottawa: Web Application Pentest 101 - Workshop
150 Louis-Pasteur Private, Ottawa, ON, CAThis is a beginner hands on guided workshop introducing web application penetration testing.
This is a free event but registration is required. You MUST get a ticket to attend. Tickets can be reserved at:
https://buytickets.at/owaspottawachapter/1888916
Workshop Abstract:
An introduction to Application Pentesting using OWASP Juice-Shop. We'll explore a handful of vulnerabilities, cover topics such as the workflow of a pentest, creating effective vulnerability reports, and introduce participants to some basic pentest tooling. If you're interested in app exploitation and you want to get hands on with some basics, we'll get you started.## Setup:
The workshop will be "hands on" where you will use your laptop against a training environment running on your laptop. Please setup your laptop prior to the workshop so the event will run smoothly.
- Bring your laptop
- Install docker on your laptop
- windows: https://docs.docker.com/desktop/setup/install/windows-install/
- Mac: https://docs.docker.com/desktop/setup/install/mac-install/
- Linux: https://docs.docker.com/engine/install/
- Ubuntu: https://www.digitalocean.com/community/tutorials/how-to-install-and-use-docker-on-ubuntu-20-04
- Install OWASP Juice Shop Docker container:
- https://pwning.owasp-juice.shop/companion-guide/latest/part1/running.html#_docker_image
Presenter Bio: Fennix (he/him)
After a ten year career in a variety of technical roles, when the opportunity to jump into a pentesting role came up Fennix jumped at the chance. That was nearly a decade ago and in the time since he has several hundred CVEs to his name and numerous strong opinions about the state of the industry. Over that time he created and delivered numerous presentations and training courses for a variety of audiences ranging from security focals and developers to administrative and sales staff to, well, just about anyone. For the past five years he has been part of the core organizing committee and core challenge development team for CyberSci, Canada's post-secondary cybersecurity challenge.59 attendees
Past events
138
