OWASP Limassol

Welcome

Welcome to the OWASP Limassol chapter home page. We are located in Cyprus, a Mediterranean island renowned since antiquity for its mineral wealth, exquisite wines and produce, and stunning landscapes, we are perfectly placed to take advantage of it all.

Cyprus

Be a part of the OWASP Limassol Chapter and join us in discovering the latest application security research and trends! Our meetings are free and open to anyone interested in learning more about application security. You can contribute to knowledge transfer through hands-on training, presentations of OWASP projects, and sharing SDLC knowledge. Whether you’re a local student new to application security or an experienced professional seeking collaborators, we provide an engaging experience for everyone. Join us each month as we explore the cutting-edge of application security research and trends.

Participation

The Open Worldwide Application Security Project (OWASP) is a nonprofit foundation that works to improve the security of software. All of our projects, tools, documents, forums, and chapters are free and open to anyone interested in improving application security.

Chapters are led by local leaders in accordance with the Chapters Policy. Financial contributions should only be made online using the authorized online donation button.

Everyone is welcome and encouraged to participate in our Projects, Local Chapters, Events, Online Groups, and Community Slack Channel. We especially encourage diversity in all our initiatives. OWASP is a fantastic place to learn about application security, to network, and even to build your reputation as an expert. We also encourage you to be become a member or consider a donation to support our ongoing work.

Supported by

InDrive Semrush BrainRocket


NY

Events

Date - 31 May 2024

Time - 6.30pm - 11pm

Where - Crowne Plaza Hotel.

Register to the event via Meetup platform.

OWASP Limassol meetup 2024-v1

Join us for an evening of cool new ideas and inspiring presentations from industry experts. We’ll discuss the latest trends in web application security, share best practices and explore different approaches to building a secure online environment. So come on out and learn something new! We look forward to seeing you there!

We are also currently looking for people to present at the meetup. If you have a great idea or research, or you would like to share your experience with the rest of the information security community, please submit a Call for Proposals.

We prepared cool and tech-savvy gifts for speakers and active participants in our quizzes, etc.

Speaker pack:

  • Hamgeek HackRF One R9 and Portapack H2 Include 5 Antennas and Data Cable 1MHz-6GHz SDR Radio Unmounted Black
  • OWASP T-shirt

Activities winner’s pack:

  • NooElec ‘Yard Stick One’ USB Transceiver & 915MHz Antenne
  • OWASP T-shirt

Quizzes winner’s pack:

  • RTL-SDR Blog V3 R860 RTL2832U 1PPM TCXO HF Bias Tee SMA SDR with Dipole Antenna Kit
  • OWASP T-shirt

We are delighted to announce that this event is supported by Semrush – the online visibility management and content marketing SaaS platform. The company provides insights and solutions for businesses to build, manage, and measure campaigns across various marketing channels. Semrush, with nearly 108,000 paying customers, is headquartered in Boston and has offices in Limassol, Philadelphia, Trevose, Austin, Dallas, South Florida, Amsterdam, Barcelona, Belgrade, Berlin, Prague, Warsaw, and Yerevan. Shout out to the company for going the extra mile to make this event memorable and fulfilling for us all.

Semrush

We can’t wait to see you there!

Register to the event via Meetup platform.

Join us in the Telegram channel and keep tuned.


Example

Put whatever you like here: news, screenshots, features, supporters, or remove this file and don’t use tabs at all.


Past Events

You can find the full list of our past events here.


Date Title Materials
2023/02/23 Use information about modern attacks to stay safe. by Valeriy Shevchenko
2023/02/23 How modern package managers can help you deal with a supply chain attack. by Denis Rybin
2023/02/23 Security Engineering or Unpopular AppSec. by Anatoly Makovetsky Slides
OWASP Limassol 2.0
2023/07/28 How are Apples cracked? by Maksim Gall
2023/07/28 Malware in the life of SOC analyst: how to improve detection? by Vlad Bychenkov
2023/07/28 SMS flood prevention. by Dmitry Vershinin
2023/07/28 10255 Shades of k8s. by Andrey Leonov
OWASP Limassol New Year
2023/12/15 Happy DDOS to you! Or how we saved the Christmas by Ivan Agarkov
2023/12/15 How to find the balance between compliance and real security? by Mariia Erokhina
2023/12/15 Observability for security. Deep dive into Osquery by Artem Mishchenko Slides
2023/12/15 Beyond IT/Fintech: Between Good and Evil. EA/SA and CSO/ISO: To Hire or To Fire? by Albert Fedoseev Slides
OWASP Limassol Chapter v4
2024/05/31 ASPM - story about unicorns, sneaky business and unexpected decisions by Ivan Elkin Slides
2024/05/31 DHIS2: Building Security For An Open-Source Project by Michael Markevich Slides
2024/05/31 Content Blocking system in Cyprus by Dmitrii Stepul Slides
2024/05/31 Impossible security - solving tasks with no right solution by Sergey Belov Slides

CTF 2024

We are thrilled to announce the results of the recent OWASP Limassol Meetup, where participants engaged in a challenging and exhilarating LLM application hacking activity. The event was a resounding success, showcasing the remarkable skills and talents of our community members.

Event Highlights Recap:

  • LLM Application Challenge by TODO: security: Participants tested their skills by bypassing security mechanisms and exploiting basic LLM misconfigurations to uncover a secret string. The challenge featured multiple levels of increasing difficulty, culminating in a series of web exploitation tasks.

Timeline and Winners:

LLM Application Scoreboard LLM

Let’s congrats our Qualifying LLM App winners:

  • 1st place - Valery T
  • 2nd place - Vadim Efremov [@Nightfs]
  • 3rd place - Roman Ponomarev [@kowhatu]
  • 4th place - Andrew Grigorev @eigrad

LLM

Offline PvP Hackers Battle:

The top performers in the LLM app were invited to an exclusive offline hackers’ battle. This intense competition took place after the talks at OWASP Limassol Meetup v4 and consisted of three rounds. Each round tested the participants’ speed and expertise, with the last one to solve the task in each round being eliminated.

LLM

With a high respect to the winner of PvP Battles: Valery T

Props to TODO: security for preparing the challenges for our participants, and huge kudos to all the players as well! We are looking forward to seeing you next time =)


CTF 2023

🔐 The recently concluded OWASP Limassol Qualifying CTF brought together cyber enthusiasts for an exhilarating PvP experience!

Attention all cybersecurity aficionados and budding ethical hackers! The time has come and gone to test your mettle and dive into the thrilling realm of Capture The Flag (CTF) contests. The Island Hack and Learn CTF event by OWASP Limassol recently showcased an event that put your knowledge to the test, stretched your boundaries, and recognized your hard work!

The Qualifying CTF spanned across 3 days and encompassed 5 tasks covering a range of Information Security topics. We celebrated the achievements of 4 winners who scored the highest points within a brief timeframe. If you were part of this exciting journey, you can relish the memories of the competition that just took place.

CTF

Let’s congrats our Qualifying CTF winners:

  • 1st place - suslikcs @LockeeLamora
  • 2nd place - exe-cut3 @exe_cute
  • 3rd place - silent @sil3ntz
  • 4th place - s1ck @s1ckCl1ck3r

Huge kudos to all the other players as well!

  • @yourgrandmalover
  • @gimlyx
  • @package
  • @kowhatu
  • @eigrad

There is tremendous respect from the organizers and from the island community too!

🤩 Offline PvP Battles:

Following the conclusion of the online Qualifying CTF, participants engaged in an electrifying offline PvP battle that had pulses racing! Cybersecurity warriors had the chance to meet in person, exchange insights, build valuable connections, and enjoy friendly competition.

The showdown kicked off as a segment of the OWASP Limassol Meetup 2.0 event. It consisted of 3 rounds featuring 3 tasks for the 4 winners of the Qualifying online CTF. These tasks spanned various categories, and participants needed to eliminate one category in each round based on the speed of their solutions 😀 The last individual to solve the task in each round would be eliminated. The battles were anticipated to last no more than 20 minutes each, with a demonstration screen and audience support adding to the excitement – a fantastic opportunity to gain a fan following. PvP

Ultimately, a solitary champion emerged from the offline battle, while the remaining participants earned boundless respect from the community for their spirited involvement. PvP

With a high respect to the winner of PvP Battles: @exe_cute


Speakers

We welcome speakers of all level! You don’t have to be a pro to talk at one of our events, but we do ask that you talk be related to an application security domain and you provide value to attendees. To be a speaker, simply review the speaker agreement and then contact the our leads:

Please include all details of what project, independent research or related application security topic you would like to present on.


Sponsorship

As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button.

Use the donation button above to donate to this chapter or become a local chapter supporter.