Registration and Keynote Announcements - AppSec APAC 2012

[AppSec AsiaPac 2012 Conference]

All -

The planners for OWASP AppSec Asia Pacific 2012 Conference in Sydney Australia, April 11-14 are pleased to announce:

Registration is open, Keynote Speakers are confirmed, information on the first Training Class is available, and Thanks to our first Sponsors!

______________________________________________________________________________________________________________________________________________

REGISTRATION

Conference registration is now officially open!  Direct link to registration page: http://www.regonline.com/appsecapac2012. 

The regular conference price is $545.00 USD, but early bird registrants (before March 1, 2012) will get $50 off of registration.  Also, if you are a member of OWASP, AISA, or AUSCERT you will receive an additional $50 discount.

Training courses are $695 for one day or $1295 for two. Registration for Justin Searle's 2 day course (details below) is available. More courses will be announced next week.  

Conference details, sponsorship information, registration links, and accommodations are all available at the conference site: appsecapac.org

______________________________________________________________________________________________________________________________________________

KEYNOTE SPEAKERS - the following 4 individuals and 1 organization will be joining us:

Alistair McGibbon 

Alastair MacGibbon is an internationally-respected authority on cybercrime, including Internet fraud, consumer victimisation and a range of Internet security and safety issues. He is the managing partner of Surete Group, a consultancy dealing with improved customer retention for Internet companies by increasing trust and reducing negative user experiences. Prior to this for almost 5 years Alastair headed Trust & Safety at eBay Australia and later eBay Asia Pacific. He was a Federal Agent with the Australian Federal Police for 15 years, his final assignment as the founding Director of the Australian High Tech Crime Centre.

Jacob West 

Jacob West is Director, Software Security Research for the Enterprise Security Products division of Hewlett-Packard. West is a world-recognized expert on software security and brings a technical understanding of the languages and frameworks used to build software together with extensive knowledge about how real-world systems fail. In 2007, he co-authored the book "Secure Programming with Static Analysis" with colleague and Fortify founder Brian Chess. Today, the book remains the only comprehensive guide to static analysis and how developers can use it to avoid the most prevalent and dangerous vulnerabilities in code. West is a frequent speaker at industry events, including RSA Conference, Black Hat, Defcon, OWASP, and many others. A graduate of the University of California, Berkeley, West holds dual-degrees in Computer Science and French and resides in San Francisco, California.

Jeremiah Grossman

Jeremiah Grossman is the Founder and CTO of WhiteHat Security, where he is responsible for Web security R&D and industry outreach. Mr. Grossman has written dozens of articles, white papers, and is a published author. His work has been featured in the Wall Street Journal, NY Times and many other mainstream media outlets. As a well-known security expert and industry veteran, Mr. Grossman has been a guest speaker on five continents at hundreds of events including BlackHat, RSA, ISSA, and others. He has been invited to guest lecture at top universities such as UC Berkeley, Stanford, Harvard, UoW Madison, UCLA, and Carnegie Mellon. Mr. Grossman is also a co-founder of the Web Application Security Consortium (WASC) and previously named one of InfoWorld's Top 25 CTOs. Before founding WhiteHat, Mr. Grossman was an information security officer at Yahoo!

Rafal Los 

Rafal Los is the Software Security Evangelist for the Software & Solutions business at Hewlett-Packard. Rafal combines knowledge of industry, customer, and technology solutions - bridging the gaps between security technologies and business needs. Rafal focuses on how organizations can demonstrate the business value of software security by implementing practical solutions and measuring risk reduction as part of HP's Application Security team. He has spent over 11 years in various facets of information security and data protection, from technical research to building programs at companies ranging from startups to Fortune 50 enterprises. Rafal is a regular speaker at public and private information security and quality conferences (including OWASP, SecTor, DEF CON, Black Hat, SANS and others). Additionally, Los contributes to regularly to organizations such as the Open Web Application Security Project (OWASP) and others promoting education, openness and standards.

Prior to joining HP, Los led the web application security program and served as a security lead at a Global Fortune 100. Los also worked with various sub-businesses, leading security engineering, architecture and building the web application security program. Los has a long history of strategic success with organizations large and small, providing critical strategic leadership on products, services, and strategy. Rafal received his B.S. in Computer Information Systems from Concordia University, River Forest, Illinois.

CERT Australia

CERT Australia is Australia’s official national computer emergency response team (CERT). CERT Australia works to ensure that all Australians and Australian businesses have access to information on how to better protect their information technology environment from cyber based threats and vulnerabilities. CERT Australia is the initial point of contact for cyber security incidents impacting upon Australian networks. 

______________________________________________________________________________________________________________________________________________

TRAINING

2 Day Course - Assessing & Exploiting Web Applications with Samurai-WTF (Justin Searle) - Course Details & Instructor Bio

Come take the official two-day Samurai-WTF training course given by one of the founders and lead developers of the project! You will learn the latest Samurai-WTF open source tools and as well as the latest techniques to perform web application penetration tests. After a quick overview of pen testing methodology, the instructors will lead you through the end-to-end process of testing and exploiting several different web applications, including client side attacks using flaws within the application. Different sets of open source tools will be used on each web application, allowing you to learn first hand the pros and cons of each tool. Primary emphasis of these instructor lead exercises is how to integrate these tools into your own manual testing procedures to improve your overall workflow. After you have gained experience with the Samurai-WTF tools, you will be challenged with a capture the flag event. This final challenge will give you time to practice your new skills at your own pace and experiment with your favorite new tools. This experience will help you gain the confidence and knowledge necessary to perform web application assessments and expose you to the wealth of freely available, open source tools.

______________________________________________________________________________________________________________________________________________

 THANKS TO OUR EARLY SUPPORTERS

Sponsors: AppSecure and Imperva

Associations: Australian Information Security Association (AISA) and the Australian Computer Emergency Response Team (AusCERT)

______________________________________________________________________________________________________________________________________________

Early next week we will have more information about the trainers and more speakers, so stay tuned!

Also, a friendly reminder that our first round of  CFT and CFP closes Friday... so send your submissions asap! Visit appsecapac.org for more information.

Regards,

The AppSec Asia Pacific 2012 Conference Planning Team