OWASP Indore
Welcome to the Indore chapter homepage. The chapter leaders are Krishnapal Sharma and Pankaj Verma.
Participate
There are 2 ways to participate in the OWASP Indore Chapter Events
- Attending the Event
- Speaking at the Event
Upcoming Events
For upcomming events visit our Meetup or follow us on Twitter and Instagram.
Become a Speaker
Call For Speakers is open - if you would like to present a talk on Application Security at future OWASP Indore Chapter events - please review and agree with the OWASP Speaker Agreement and send the proposed talk title, abstract and speaker bio to the Chapter Leaders via Email.
Sponsorship for Local Chapter
For more information on how to support OWASP Indore chapter in helping organize free and open security meets contact the chapter leaders. Krishnapal Sharma
Code of Conduct
We hope you enjoy our events, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback or would like to speak to us, we take these matters very seriously. You can find out more about our policies here
About OWASP
The Open Web Application Security Project (OWASP) is a nonprofit foundation that works to improve the security of software. All of our projects, tools, documents, forums, and chapters are free and open to anyone interested in improving application security.
About OWASP Chapters
Chapters are led by local leaders in accordance with the Chapter Policy. Financial contributions should only be made online using the authorized online donation button.
Participation
Everyone is welcome and encouraged to participate in our Projects, Local Chapters, Events, Online Groups, and Community Slack Channel. We especially encourage diversity in all our initiatives. OWASP is a fantastic place to learn about application security, to network, and even to build your reputation as an expert. We also encourage you to be become a member or consider a donation to support our ongoing work.
There are 2 ways to participate in the OWASP Indore Chapter Events
Attending the Event
If you would like to attend the upcoming events, join the chapter at Indore and stay tuned for the updates.
Speaking at the Event
Call for Speakers
If you would like to present a talk on Application Security at future OWASP Indore Chapter events - please review and agree with the OWASP Speaker Agreement and send the proposed talk title, abstract and speaker bio to the Chapter Leaders via Speaker Form.
Past Events
OWASP INDORE & DC91731 VIRTUAL MEETUP AUG
OWASP meets are free for anyone to attend. There are absolutely no fees. Just come with an open mind and willingness to share and learn.
Date: Sunday 23 August 2020
Session Details/Agenda:
11:00 AM - 11:10 AM : Introduction of speaker.
11:10 AM - 11:50 AM : Blind SQL Injection [ Ansh Bhawnani ]
11:50 AM - 12:10 PM : Discussion and Q/A.
12:10 PM - 12:50 PM : Unrestricted File Upload [ Raju Kumar ]
12:50 PM - 01:10 PM : Discussion and Q/A.
Introducing Speakers & their Topics :-
Blind SQL Injection :- Blind SQL injection is a type of SQL Injection attack that asks the database true or false questions and determines the answer based on the applications response. This attack is often used when the web application is configured to show generic error messages, but has not mitigated the code that is vulnerable to SQL injection.
Intro of Speaker :- Ansh Bhawnani is a hackfluencer and a security researcher. He is a cyber security trainer and has been teaching cyber security since past 4 years. He has a YouTube channel with over 108K subscribers.
Unrestricted File Upload :- Uploaded files represent a significant risk to applications. The first step in many attacks is to get some code to the system to be attacked. Then the attack only needs to find a way to get the code executed. Using a file upload helps the attacker accomplish the first step.
Intro of Speaker :-
Raju Kumar is currently Synack Red Team member. He has participated in many bug bounties program & Recognised by many Companies likeDell, Mastercard, Netgear, DigitalOcean , Western Union, Genymotion and many more for finding a critical vulnerability in their website.
Meetup RSVP Link :-Meetup RSVP.
OWASP & DEFCON INDORE VIRTUAL MEETUP 26 APRIL
OWASP meets are free for anyone to attend. There are absolutely no fees. Just come with an open mind and willingness to share and learn.
Date: Sunday 26 April 2020
Session Details/Agenda:
11:00 am - 11:15 am : Introduction of speaker.
11:15 am - 12:00 pm : Intro to Bug Bounty (By Lavanya Srivastava )
12:00 PM - 12:30 PM : Discussion and Q/A.
12:30 pm - 1:15 pm : A Deep Dive into Cross-Site Request Forgery (CSRF) (By Faiz Ahmed Zaidi)
01:00 PM - 01:30 PM : Discussion and Q/A.
Introducing Speakers & their Topics :-
Intro of Speaker :-
Faiz Ahmed Zaidi have over four years of hands-on experience in IT Security specializing in penetration testing. Apple, Facebook, Intel,MasterCard, Microsoft, Sony, OLX, Tesla Motors, and more acknowledge him for finding security issues. Also registered few CVE’s and zero-day with his name.
CSRF:- Cross-Site Request Forgery (CSRF) is an attack that forces an end user to execute unwanted actions on a web application in which they’re currently authenticated.
Intro to BUG BOUNTY :-
Bug Bounty is a deal offered by many websites and software developers by which individuals can receive recognition and compensation for reporting bugs, especially those pertaining to exploits and vulnerabilities.
Intro of Speaker :-
Lavanya Srivastava is currently working with Expleo Group.He is known for his Extreme Bug Hunting Skills.He has participated in many bug bounties program & Recognised by many Big Tech Companies like –NCIIPC-RVDP(Govt. of India) ,Facebook, Fitbit, Dailymotion, Safehats, Mastercard, Semrush, Sidefx, Sap, Sprotskeeda, CCM & much more. He is also known for his CTF & Python skills. He is a type of guy who look everything deeply.
RSVP :- Here
OWASP and Defcon Second Meetup on 9Feb 2020
OWASP meets are free for anyone to attend. There are absolutely no fees. Just come with an open mind and willingness to share and learn.
Date: Sunday 9 Feb 2020
Session Details/Agenda:
10:30 am - 11:00 am : Introductions and Chapter Updates
11:00 am - 12:30 pm : Short intro to APT[advanced persistent threat]
12:30 pm - 1:00 pm : Networking
1:00 pm - 2:30 pm : Analysis of attack on the basis of network analysis
What is APT ??
Advanced persistent threat (APT) is a stealthy computer network threat actor, typically a nation state or state-sponsored group, which gains unauthorized access to a computer network and remains undetected for an extended period.
Intro of Speaker :- Shashank Sharma is a Security Engineer at Altered Security Solutions Pvt Ltd.He is done M.TECH (Network Management and Information Security).He is researcher and security enthusiast.He is certifed CHFI,CEH and lots of from NIIT.He has done many projects on security.
Network Analysis:
Network analysis can be regarded as a set of techniques with a shared methodological perspective, which allow researchers to depict relations among actors and to analyze the social structures that emerge from the recurrence of these relations.
Intro of Speaker :-Deepanshu Bhinda is an Experienced Chief Executive Officer with a demonstrated history of working in the information technology and services industry. Skilled in Probability, Data Science, Presentation Skills, Web Design, and Data Analytics.he handle ambiguity and come-up with the right intuitive and easy-to-use solutions, taking on projects that require high skill levels and strong technical expertise.Having specialties in Computer Vision Software Applications for: Cloud computing, Mobile, Web, Desktop. Technology expertise including: Computer Vision, Video & Image Processing, Machine Learning, Object Recognition, Image Recognition, Graphics & 3D Software.
RSVP us at :- RSVP link
First Meetup 14th Sept 2019
OWASP meets are free for anyone to attend. There are absolutely no fees. Just come with an open mind and willingness to share and learn.
Date: Saturday 14 Sep 2019
Session Details/Agenda:
4:45-5:00 pm : Introductions and Chapter Updates
5:00-5:45 pm : Recon by Sanskar Sharma
5:45-6:00 pm : Networking Breaks
6:00-6:45 pm : Subdomain Takeover By Yatin Sharma
6:45-7:00 pm : Feedback and Next Meet Discussion
Venue: WittyFeed 911, Shekhar Central, Palasia Square, Manorama Ganj, Indore, Madhya Pradesh 452001