Yesterday was another great OWASP meeting by the SF chapter. The lineup included Ivan Ristic, who talked about web application firewalls (WAF), and Neil Daswani, who talked about emerging security vulnerabilities and the impact to business.
The meeting was held at Golden Gate University, a place I didn’t even know existed, even though I pass it all the time. The lecture rooms were very nice though, with power and network connections at each seat.
Both talks were very good, and here are some of the interesting points that I remember:
- ModSecurity, a free WAF for apache was bought by Breach a few years ago.
- Stanford has an advanced security certificate program, which is available online and on-campus.
- Google Code for Educators has a web security section.
There will be no San Jose or San Francisco OWASP meeting next month, due to the OWASP and WASC AppSec conference in San Jose. That event will be taking place at eBay, from November 12th to the 15th.
Below are a couple from the event, the full set can be found on flickr.