OWASP Portland
Welcome
This is the website of the Portland, Oregon OWASP Chapter.
We a chapter dedicated to the application security and information security of the Pacific Northwest. Above are tabs to various elements of our chapter activity. We host monthly study nights and chapter meetings, have a vibrant podcast highlighting our speakers, trainers, and people of influence in application security, an annual training day, and an ongoing mentorship program.
Next Meeting/Event(s)
AppSecPNW Conference - June 10, 2023
Get Involved
If you are interested in being more involved in our chapter there are links in our sidebar to our meetup, twitter, and linkedin resources.
Let us know if you would be interested in speaking or leading a study session.
Our Committees
Chapter Leadership
- Kendra Ash - Chapter President
- Brian Myers - AppSecPNW Chair
- Benny Zhao - Treasurer
- Terry Tower - Mentorship Committee Chair
- Chelsea Willis - Chapter Meeting Committee Chair
- Samuel Lemly - Study Night Committee Co-Chair
- Allison Naaktgeboren - Study Night Committee Co-Chair
- Derek Hill
- David Quisenberry
Chapter Meetings
Purpose
Our Chapter Meeting committee is responsible for cultivating venues and speakers for our monthly chapter meeting.
Members
- Chelsea Willis - Chair
Opportunities
If you are interested in speaking at a chapter meeting, having your company host one of our meetings, or helping out with this committee please email [email protected].
AppSecPNW Conference
Purpose
Our AppSecPNW Conference committee is responsible for the planning of the AppSecPNW Conference.
Members
- Brian Myers - Chair
Opportunities
If you are interested in speaking at the conference, know a company who wants to sponsor, or helping out with this committee please email [email protected].
Membership and Community Outreach
Purpose
Membership and Community Outreach promotes our events, learns how we can be a better chapter for our membership and local companies, universities/colleges, and like-minded organizations.
Opportunities
If you are interested in reaching out to our members and community please email [email protected].
Mentorship
Purpose
The Mentorship committee helps match mentor and mentee pairs, recruit people to utilize our mentorship program, develop resources for learning, and check in with mentorship pairs.
Members
- Terry Tower - Chair
Opportunities
If you are interested in being a mentor or mentee, developing resources, or serving on this committee email [email protected].
Study Night
Purpose
The Study Night committee coordinates speakers/trainers/activities for our monthly study night.
Members
- Allison Naaktgeboren - Co-Chair
- Samuel Lemly - Co-Chair
Opportunities
If you are interested in practicing a talk, leading a hands on small group training, or serving on this committee email [email protected].
Mentorship
What It Is
We’re in the business of helping people grow. Whether you are a beginner, and expert, or somewhere in between, we want to help you develop as a professional. Our mentorship program runs for 6 months. We work to pair you with someone who has experience or is interest in the same area you are looking to mentor or be mentored. It’s about relationships, hands on keyboards, questions, advice. A lot of the program is what you make out of the relationship we seed you with.
How to Get Involved
If you are interested in joining our next mentorship class (starting Jan 2020), please contact one of our leaders in our chapter via email.
Resources to Help
Here is our resource guide for our mentorship program. It is very much a work in progress (and we would love your help if you want to throw some people hours at it).
Presentations
Podcasts
All of our podcasts can be found here:
Contact us if you know someone who would be a great podcast guests:
-
Caroline Wong - What a Top Chief Strategy Officer Has to Say About Security These Days
-
Bruce Schneier - We Live in a Security and Privacy World That Science Fiction Didn’t Predict
-
Terry Dunlap - IoT Security Starts with Getting Rid of Your IoT Devices
-
Andrew van der Stock - OWASP Executive Director - Our Software is the Firewall
-
Simon Bennetts and Rick Mitchell - The Great Proxy Wars - ZAP vs. Burp Suite
-
Jake King - Linux Cloud and Endpoint Security - Do It Wisely. Make it Easy
-
Eric Higgins - Security From Zero: Practical Security for Busy People
-
Mike Goodwin and Jon Gadsden - Threat Dragon is for Threat Modeling. Come Help Build It!
-
John Andersen - The Easiest Way to Use Machine Learning for AppSec (DFFML)
-
Tanya Janca - SheHacksPurple - Some of the Best AppSec Advice You’ll Ever Hear Here!
-
Kaliya Young - How We See Identity for Authentication Needs to Change
-
Mark Curphey - Founder of OWASP - Security. Don’t Be Shy. Just Ask!
-
Aaron and Ray - Application Security. It’s Really About the Code!
-
Ryan Krause - Some Good Advice For Those Who Want to Become Pen Testers
-
Patterson Cake - Overcoming Your Greatest InfoSec Adversary: You!
-
David Quisenberry & Ben Pirkl - OWASP Top 10 / Juice Shop Hack Session
Videos
All of our videos can be found on our OWASP PDX YouTube channel here:
-
Brian Myers - XXE for Dummies (or How to Make an XML Parser Send You Files) (OWASP Portland, Oregon)
-
Wenjing Wu - Game to Dethrone: A Least Privilege CTF (OWASP Portland, Oregon)
-
Dr. Wu-chang Feng / Nicholas Springer - Thunder CTF: Learning Cloud Security on a Dime (OWASP PDX)
-
Sam Lemly - Secure Code Warrior Tournament Overview (OWASP Portland, Oregon)
-
Clint Gibler - Detect Complex Code Patterns Using Semantic Grep (OWASP Portland, Oregon)
-
Kevan Vanhoff - 10 Things I Want to Show You about Wireshark (OWASP Portland, Oregon)