« July 2008 · January 2009 · February 2012 »

September 2008
MonTueWedThuFriSatSun
01020304050607
08091011121314
15161718192021
22232425262728
2930     
October 2008
MonTueWedThuFriSatSun
  0102030405
06070809101112
13141516171819
20212223242526
2728293031  
November 2008
MonTueWedThuFriSatSun
     0102
03040506070809
10111213141516
17181920212223
24252627282930

Calendar:

  • No entries for November 2008.
  • 31.10.2008: See below.
  • 30.10.2008: Gimmiv, rocks, worms, and fuzziness
  • 28.10.2008: OWASP AppSec Asia 2008 - Taiwan
  • 27.10.2008: OWASP AppSec Asia 2008 - Taiwan
  • 25.10.2008: Abuse Day - Helsinki, Finland
  • 24.10.2008: Abuse Day - Helsinki, Finland
  • 19.09.2008: NSP-SEC Conference - Rotterdam, Netherlands
  • 18.09.2008: Geographically Identifying SSH Brute Force Attacks
  • 17.09.2008: GOVCERT.NL Conference - Rotterdam, Netherlands
  • 16.09.2008: GOVCERT.NL Conference - Rotterdam, Netherlands
  • 12.09.2008: Internet Security Operations and Intelligence (ISOI5) Conference - Tallin, Estonia
  • 11.09.2008: Internet Security Operations and Intelligence (ISOI5) Conference - Tallin, Estonia
  • 06.09.2008: Atrivo/InterCage - Malware Haven
  • 05.09.2008: Shadowserver Bot Count Charts
Newest first Oldest first

Friday, 31 October 2008

Conference Update - OWASP AppSec Asia 2008 - Taiwan


Just wanted to post a quick update on a conference Shadowserver was invited to present at earlier this week: OWASP AppSec Asia 2008 - Taiwan. Armorize, the organizer and a sponsor of the event, did an excellent job at setting up the conference, taking care of the speakers, and keeping everything on track. They also showed us a good time in Taipei, which I'll get to later. I had the pleasure of giving a presentation on some of our HTTP Botnet Research to a fairly large crowd. The conference had around 1300 registered attendees with probably just under 1000 attending at any given point in time. I believe most of the Asian chapters were represented at the conference with a majority of them being the chapter leaders. Off the top of my head I know there was representation from Taiwan, China (mainland), Hong Kong, Singapore, Vietname, Korea, Thailand, and India. Several of these chapter leaders were also presenters during one of the two days of the conference.

The presentations were great and were done in both Chinese and English. They had translators on hand that did an excellent job of keeping pace and with the content in both English and Chinese -- an unbelievable talent. Very little was skipped over or lost. The topics ran the gamut and were both technical and non-technical providing a lot of information and food for thought. Not to single out any specific presentations, but this was the first time RSnake publicly presented on Clickjacking. Also, if you ever have the title of "Web Application Firewall Manager", you can probably thank Alexander Meisel. Fortunately our presentation went very well and I was sober, coherent, and adjusted to the 12 hour time zone difference. Sure, that's the way it should be, but when I presented at AppSec 2008 (NYC) I was barely alive after the Mexican food from the night before wreaked havoc on me only hours before I was on. :)

Presentation aside - the city of Taipei was great. In fact the visit to the country was great, as I got to visit Hualien and Taroko Park as part of my vacation the week earlier. On the second night Armorize took us to eat at the famous Dim Tai Fung, which has excellent food (ate there twice during my visit). We also took a trip up to the top of Taipei 101 at night time for a great view. The rest of the time was well spent by partying with some of the fellow speakers from the conference. This was quite a conference and will surely do well to increase the interest and knowledge about security in Asia.

=>Posted October 31, 2008, at 02:12 AM by Steven Adair