Free

OWASP Dublin Event

Event Information

Share this event

Date and Time

Location

Location

Workday (Kings Building)

May Lane

Arran Quay

D07 W310 Dublin

Ireland

View Map

Friends Who Are Going
Event description

Description

This OWASP Dublin session will look at breaking outside sandboxes and the recent WannaCry attacks which impacted many organisations on the 12th May last. We're delighted to hold this meeting in Workday. In addition to hosting the event, Workday will kindly be providing free pizza and beer for the event.

Detail of the event are below. For any questions please feel free to email the Chapter distribution list:

owasp-ireland@lists.owasp.org.

Click here to sign up to the distribution list and here for the OWASP Dublin Chapter page..

Session 1 - JVM Sandbox (In)security

Adrian (@adrianbravon) works as a Principal Security Engineer at Workday, where he helps development teams design and implement secure cloud applications at scale. His focus is on application security, cryptography, and devsecops. Before Workday, Adrian worked as a penetration tester for financial and telecommunications companies. He holds several infosec certifications including GIAC GPEN and GXPN, and when he has time he blogs at https://securityetalii.es.

JVM Sandbox (In)security
The Java Virtual Machine (JVM) provides an extensible architecture to sandbox untrusted code and prevent it from harming your system. Learn how to write a sandbox for any JVM language such as Java, Scala, Groovy, Jython, JRuby, or Clojure. We'll explain the Java Security Architecture that forms the core of the JVM sandbox, explore common misconceptions that lead to sandbox escapes, and provide a few techniques to assess the security of existing JVM sandboxes.

Session 2 - WannaCry attacks by Gavin O'Gorman (Symantec)

Working in Symantec for the past eight years, Gavin is an intelligence analyst on the attack investigations team. Before moving to the attack investigations team in 2013, he worked as a reverse engineer, and later as an incident handler. Gavin's primary role is to gather together information from both Symantec data sources, and open sources, to build a comprehensive picture of an attack, or attackers. Another aspect of the job is to work with law enforcement to assist in the investigation of e-crime where possible. Prior to working in Symantec, Gavin spent several years researching network security in Dublin City University, and currently lectures part-time for the DCU Masters in Security & Forensics course.

In this session, Gavin will speak about the recent WannaCry attacks, where it came from, and some details of our investigation into who is possibly behind the attack. The session will also cover some other significant activity published in the last year relating to the alleged CIA leaks, and an interesting investigation into a small-time criminal in Eastern European country who was discovered using quite complex malware.


Venue Information

Workday, King's Building: https://www.google.com/maps/place/Workday/@53.3478343,-6.2776673,17z/data=!3m1!4b1!4m5!3m4!1s0x48670c292581fddd:0x3c0551bb091102f0!8m2!3d53.3478343!4d-6.2754786?hl=en
Nearby Parking: http://www.parkopedia.ie/parking/carpark/smithfield_new_church_street/dublin/
Attendants will have to register at reception to get a visitor's badge. The event will be hosted in the Speir (6th floor). Food and drinks will be provided.
Free WiFi is available.



Share with friends

Date and Time

Location

Workday (Kings Building)

May Lane

Arran Quay

D07 W310 Dublin

Ireland

View Map

Save This Event

Event Saved