Defensive Security event.
Proposed sessions for this event:
- Code Review Bachaav by sandesh
Announcing null Bachaav session “Code Review". Like all null Bangalore Bachaav sessions, this is free but registration is compulsory. A group of participants will be selected based on the registrations since Bachaav is invite only and with prior registration and approval of the Bachaav champion. Here are the details:
Bachaav Title: Code Review
Bachaav Champion: Sandesh Anand
When: 5th July 2014, 10 AM - 6 PM
Registration Link: http://swachalit.null.co.in/events/12-code-review/event_registrations/new
Bachaav Description: This will be a completely hands on session on Code Review. The following topics will be covered:
* Introduction to code review * Basics of J2EE * Setting up the "test" application in Eclipse * Wallkthrough installed Eclipse plugins * Manual verification of security controls - Authentication, Authorization, Input handling, Encryption etc. * Scripting to help manual review * Running a scan using open source tools (e.g.: Findbugs) * Primer to data flow analysis - How this effects code review * Fixing issues: This includes: * 1. How to provide recommendation advice 2. How to validate fixes 3. Applying a couple of fixes from the code reviewed
Note: Please make sure all the pre-requisites are up and running before the session starts. If you are facing any issues with setup, please try to come to the venue 30 mins before the session starts and get them fixed.
* 6 months-1year minimum coding experience (any OOP will do, preferably J2EE) * Basic Application Security knowledge (OWASP Top 10 etc) * Basic understanding of Cryptography (e.g.: difference between hashing and encryption) * Hardware requirements: Any operating system which can install Eclipse * Software requirements: 1. Eclipse IDE 2. Latest version of JDK
Registrations are not transferable. If you have been selected but are unable to attend, please inform the organizers. Your seat would be allotted to someone from the waiting list. Walk-in participants will not be allowed to attend this session.
Sandesh Anand - http://swachalit.null.co.in/profile/47-sandesh
|Date||Saturday July 05 2014|
|Event Type||Invite Only|
|Start Time||10:00 AM|
|End Time||06:00 PM|