Projects Summit 2013/Working Sessions/0013

{{Template: {{{1}}} Projects Summit 2013 Working Sessions
 * summit_track_logo = [[Image:Working_Session.jpg]]
 * summit_ws_logo = [[Image:Working_Session.jpg]]
 * summit_session_name = Bug Bounty Session
 * summit_session_url = http://www.owasp.org/index.php/Projects_Summit_2013/Working_Sessions/0013
 * mailing_list = Google Groups: owasp-project-summit-2013
 * mailing_list = Google Groups: owasp-project-summit-2013




 * short_working_session_description= Collaboration, Learning, and Sharing Knowledge are the objectives for Bug Bounty program. It offers a 'live hacking' event within a controlled environment.




 * related_project_name1 = OWASP Bug Bounty Session
 * related_project_url_1 = https://bugcrowd.com/list-of-bug-bounty-programs/


 * related_project_name2 =
 * related_project_url_2 =


 * related_project_name3 =
 * related_project_url_3 =


 * related_project_name4 =
 * related_project_url_4 =


 * related_project_name5 =
 * related_project_url_5 =




 * summit_session_objective_name1= Collaboration, Learning and Sharing Knowledge - By creating an environment where attendees can get together in an 'live hacking' event.
 * summit_session_objective_name2 = In order to keep things focused, the 'targets' are going to be companies that have public "Bug Bounties' programs. These will be companies that accept and want to be targets for such ethical hacking activities.


 * summit_session_objective_name3 = Each participant will be asked to have 'common sense' and to respect a couple 'soft' rules of engagement.
 * summit_session_objective_name4 = All participants are encouraged to share their ideas, techniques and discoveries.


 * summit_session_objective_name5 = In addition to the 'Bug Bounty' targets, we will also add a couple Open Source apps so that the 'builders' also have the opportunity to fix the source code and the 'breakers' can do source-code analysis.




 * working_session_date_and_time = Monday to Thursday, November 18-21: 8PM to 11:59PM




 * discussion_model = participants and attendees




 * operational_resources = Projector, whiteboards, markers, Internet connectivity, power




 * working_session_additional_details =

Chair: Dinis Cruz
Dinis Cruz is a Security Consultant based in London (UK) and specialized in: ASP.NET/J2EE Application Security, Application Security audits and .NET Security Curriculum Development.

For the past years Dinis has focused on the field of Static Source Code analysis, from May 2007 to Dec 2009 he worked as a independent consultant for Ounce Labs (bought by IBM in July 2009) where during active security engagements using Ounce's technology he developed the Open Source codebase which now is the foundation of the OWASP O2 Platform.

At OWASP, Dinis is the leader of the OWASP O2 Platform project.

Operational Manager:



 * summit_session_deliverable_name1 = To have authorization to attack/test 'targets'.


 * summit_session_deliverable_name2 =


 * summit_session_deliverable_name3 =


 * summit_session_deliverable_name4 =


 * summit_session_deliverable_name5 =


 * summit_session_deliverable_name6 =


 * summit_session_deliverable_name7 =


 * summit_session_deliverable_name8 =




 * summit_session_leader_name1 = Dinis Cruz
 * summit_session_leader_email1 = dinis.cruz@owasp.org
 * summit_session_leader_username1 =


 * summit_session_leader_name2 =
 * summit_session_leader_email2 =
 * summit_session_leader_username2 =


 * summit_session_leader_name3 =
 * summit_session_leader_email3 =
 * summit_session_leader_username3 =




 * operational_leader_name1 =
 * operational_leader_email1 =
 * operational_leader_username1 =


 * meeting_notes = 123
 * meeting_notes = 123




 * summit_session_attendee_name1 =
 * summit_session_attendee_email1 =
 * summit_session_attendee_username1 =
 * summit_session_attendee_company1=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed1=


 * summit_session_attendee_name2 =
 * summit_session_attendee_email2 =
 * summit_session_attendee_username2 =
 * summit_session_attendee_company2=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed2=


 * summit_session_attendee_name3 =
 * summit_session_attendee_email3 =
 * summit_session_attendee_username3 =
 * summit_session_attendee_company3=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed3=


 * summit_session_attendee_name4 =
 * summit_session_attendee_email4 =
 * summit_session_attendee_username4 =
 * summit_session_attendee_company4=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed4=


 * summit_session_attendee_name5 =
 * summit_session_attendee_email5 =
 * summit_session_attendee_username5 =
 * summit_session_attendee_company5=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed5=


 * summit_session_attendee_name6 =
 * summit_session_attendee_email6 =
 * summit_session_attendee_username6 =
 * summit_session_attendee_company6=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed6=


 * summit_session_attendee_name7 =
 * summit_session_attendee_email7 =
 * summit_session_attendee_username7 =
 * summit_session_attendee_company7=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed7=


 * summit_session_attendee_name8 =
 * summit_session_attendee_email8 =
 * summit_session_attendee_username8 =
 * summit_session_attendee_company8=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed8=


 * summit_session_attendee_name9 =
 * summit_session_attendee_email9 =
 * summit_session_attendee_username9 =
 * summit_session_attendee_company9=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed9=


 * summit_session_attendee_name10 =
 * summit_session_attendee_email10 =
 * summit_session_attendee_username10 =
 * summit_session_attendee_company10=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed10=


 * summit_session_attendee_name11 =
 * summit_session_attendee_email11 =
 * summit_session_attendee_username11 =
 * summit_session_attendee_company11=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed11=


 * summit_session_attendee_name12 =
 * summit_session_attendee_email12 =
 * summit_session_attendee_username12 =
 * summit_session_attendee_company12=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed12=


 * summit_session_attendee_name13 =
 * summit_session_attendee_email13 =
 * summit_session_attendee_username13 =
 * summit_session_attendee_company13=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed13=


 * summit_session_attendee_name14 =
 * summit_session_attendee_email14 =
 * summit_session_attendee_username14 =
 * summit_session_attendee_company14=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed14=


 * summit_session_attendee_name15 =
 * summit_session_attendee_email15 =
 * summit_session_attendee_username15 =
 * summit_session_attendee_company15=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed15=


 * summit_session_attendee_name16 =
 * summit_session_attendee_email16 =
 * summit_session_attendee_username16 =
 * summit_session_attendee_company16=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed16=


 * summit_session_attendee_name17 =
 * summit_session_attendee_email17 =
 * summit_session_attendee_username17 =
 * summit_session_attendee_company17=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed17=


 * summit_session_attendee_name18 =
 * summit_session_attendee_email18 =
 * summit_session_attendee_username18 =
 * summit_session_attendee_company18=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed18=


 * summit_session_attendee_name19 =
 * summit_session_attendee_email19 =
 * summit_session_attendee_username19 =
 * summit_session_attendee_company19=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed19=


 * summit_session_attendee_name20 =
 * summit_session_attendee_email20 =
 * summit_session_attendee_username20 =
 * summit_session_attendee_company20=
 * summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed20=

}}
 * session_name_mask = Session0013
 * session_home_page = Projects_Summit_2013/Working_Sessions/0013
 * session_home_page = Projects_Summit_2013/Working_Sessions/0013