30 Jan, 2014

AppSec California Recap

by Jack Mannino & Mike McCabe & Ken Johnson

This week some of the nVisium crew got the chance to attend and speak at AppSec California. This year was the first year for the conference and it was a great inauguration. Set in the beautiful Santa Monica community, the conference was held at the Annaberg Community Beach House. This was probably the best setting for a conference any of us had been to. It was a great break from the weather in the Mid-Atlantic with an incredible lineup of talks and speakers.

Jack Mannino and Jason Haddix presented a reboot of the OWASP Mobile Top Ten. This reboot has several updates based on some detailed research by Jack and Jason. Check it out!

Ken Johnson and I presented on some research around frameworks we’ve been working on. We analyzed a couple new frameworks, Geddy and Play! for insecure defaults. We presented findings and solutions for the issues discovered. This was a really interesting topic for us and we hope to work on it more and present additional findings in the future.

Here are our slides from the conference. Let us know on Twitter @nVisium if you have any questions.

New Frameworks, Old Problems http://prezi.com/5mk3vpxdx8fw/new-frameworks-old-problems/

OWASP Mobile Top Ten Reboot http://prezi.com/eimub0ni0amb/the-owasp-mobile-top-ten-reboot/

We want to send a big thanks out to the California OWASP chapters and Neil Matatall for putting on a great conference. We’ll see you again next year!