AppSec Europe 2014 has ended
Welcome to the full schedule of the OWASP AppSec Research EU 2014 conference days
Back To Schedule
Wednesday, June 25 • 14:00 - 18:00
Open Source Showcase

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

The Open Source Showcase (OSS) is an event module that takes open source projects, and gives project leaders or contributors an opportunity to showcase their work in a demo type of environment. It is an event module where open source project leaders have an opportunity to demo their projects, and speak to attendees about what their project is about.

This year’s Open Source Showcase features nine open source projects over a variety of specialities. These nine projects will be demoing in their own room within the conference hall all day Wednesday, June 25. The projects below will be demoing in the afternoon. 

OWASP NINJA-PingU is a high performance network scanner tool for large scale analyses. It has been designed with performance as its primary goal and developed as a framework to allow easy plugin integration. For more information on OWASP NINJA-PingU, check out the project’s wiki page here:https://www.owasp.org/index.php/OWASP_NINJA_PingU_Project

OWASP PCI Toolkit is a c# Windows form project, that will help you to scope the PCI-DSS requirements for your System Components. Beta version of this tool will be released May 2014. The OWASP PCI Toolkit page can be found here: https://www.owasp.org/index.php/Category:OWASP_PCI_Project

OWASP WTE is an enhancement of the original OWASP Live CD Project and expands the offering from a static Live CD ISO image to a collection of sub-projects. Its primary goal is to make application security tools and documentation easily available and easy to use. More information on the OWASP WTE project can be found here: https://www.owasp.org/index.php/OWASP_Web_Testing_Environment_Project

OWASP ZAP, or Zed Attack Proxy is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually. More information on OWASP ZAP can be found on the project page here:https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project

ThreadFix is a software vulnerability aggregation and management system that helps organizations aggregate vulnerability data, generate virtual patches, and interact with software defect tracking systems. More information on the ThreadFix project can be found here: https://github.com/denimgroup/threadfix/

OWASP OWTF, the Offensive (Web) Testing Framework, is an OWASP+PTES-focused try to unite great tools and make pen testing more efficient. For more information about the OWASP OWTF Project, check out the project’s wiki page here: https://www.owasp.org/index.php/OWASP_OWTF

OWASP Python Security Project aims at creating a hardened version of python that makes it easier for security professionals and developers to write applications more resilient to attacks and manipulations. More information about the OWASP Python Security Project can be found here:https://www.owasp.org/index.php/OWASP_Python_Security_Project

WebGoatPHP is a deliberately insecure web application developed using PHP to teach web application security. It offers a set of challenges based on various vulnerabilities listed in OWASP. In each challenge the user must exploit the real vulnerability to demonstrate their understanding. The application is a realistic teaching environment and supports four different modes.This projetc is part of the PHP security framework, sponsored by Google Summer of Code 2014.Websites:


Martin Law

Director, First Defence Information Security
With over 25 years in the security industry Martin and involved in many initiatives, he's a well known and popular individual that helps to evolve the industry and its community.OWASP Leeds Chapter Leader, former CREST board member, ISF council member and UK Chapter Leader, White... Read More →

avatar for Simon Bennetts

Simon Bennetts

ZAP Project Lead, StackHawk
Simon Bennetts has been developing web applications since 1997, and strongly believes that you cannot build secure web applications without knowing how to attack them. He is the OWASP Zed Attack Proxy Project Leader and works for Mozilla as part of the Cloud Security Team.
avatar for Johanna Curiel

Johanna Curiel

Security Engineer and Researcher, Mobiquity
Johanna Curiel is a security engineer and researcher with 18 years experience in programming, testing and quality control. Her early encounters with hackers and cybercrime was a turning point in her career to work in the area of Cyber security.Between 2005 and 2007, she worked as... Read More →
avatar for Matt Tesauro

Matt Tesauro

Senior AppSec Engineer, Duo Security
Matt Tesauro is currently a Senior AppSec Engineer building an AppSec Pipeline and continuous security program for Duo Security.  Prior, he worked full-time for the OWASP Foundation, adding automation and awesome to OWASP projects as the Operations Director. Previously, he was... Read More →

Wednesday June 25, 2014 14:00 - 18:00 BST
LAB111 LAB112

Attendees (0)