MozConnect with OWASP

Standard

Hi, I’m Mehul Patel and I specialize in Information Technology and Services. I’m passionate about what I do, and I love to help people. Nothing is more fulfilling than being part of a team with similar interests.

mozowasp1

Purpose: To Aware people  about cyber security and ethical hacking to involve as many as people we can to aware them about privacy, cyber crimes,secure browsing , application security , open source tool and technologies.

Organizer : Mehul Patel, Mozilla Reps.   & Viral Pramar, OWASP Chapter Leader.

Reps Event Page : https://reps.mozilla.org/e/mozconnect-with-owasp/

OWASP official Page : https://www.owasp.org/index.php/Gandhinagar

Planning Pad : https://public.etherpad-mozilla.org/p/MozConnect_with_OWASP_Gandhinagar_2016

Drive Link (Photos) : https://drive.google.com/drive/folders/0BxN_nhsqGMQ0YzBxNU5LMl9iSjA

Mozilla Mission :

Our mission is to ensure the Internet is a global public resource, open and accessible to all. An Internet that truly puts people first, where individuals can shape their own experience and are empowered, safe and independent.

https://www.mozilla.org/en-US/about/

About OWASP :

The Open Web Application Security Project (OWASP) is a worldwide not-for-profit charitable organization focused on improving the security of software. Our mission is to make software security visible, so that individuals and organizations are able to make informed decisions. OWASP is in a unique position to provide impartial, practical information about AppSec to individuals, corporations, universities, government agencies and other organizations worldwide. Operating as a community of like-minded professionals, OWASP issues software tools and knowledge-based documentation on application security.

It’s a tradition in India to light a lamp first before starting any auspicious events…
IMG_2824

IMG_2830

                                                 Thanks for your warm welcome! 🙂

 

IMG_2876

                                                           Panel of Speakers!

Session Started with Inauguration speech of Khushank Gohil on OWASP and Mozilla’s aim, agendas, planning and initiative for privacy and security worldwide.

IMG_2837

1st session taken by Jay patel on Web application Vulnerabilities. (He is known for his work of Bug Hunting who always looks for vulnerabilities existing in web application and product to keep more secured. He is experienced .NET developer and right now pursuing his masters from Victoria University Sydney and got bounty thanked from few top fortunes 500 companies.) He shown which are the bugs generally found in top multinational companies websites and how you can find it.

2nd Session taken by Vishal Patel on Secure Coding. (He have 5+ years of experience in PHP and JAVA with the excellent knowledge core programming and database management as well. He sharpen his skills in secure coding and other different languages.) Vishal shown that how to secure web application from getting hacked and how can do secure coding so that website data cannot compromised to hackers. He shown the script and code to prevent XSS, SQL injection, broken authentication and many more type of attacks.

Time for My session :

IMG_2886

Group Activities.

Its my turn now and glad to see that students eagerly waiting for my session so I thought to make it more interactive and play with different way which I’m always doing,  so started with students BRAINS brushed up as the activity was based on students PERCEPTION & VIEWS. A question was asked by me to student’s need to segregate if they agreed if they didn’t or if they were’nt sure. It made their brains lit up as each one of the students mentioned their own perspective and indirectly shared their knowledge and increased other’s as well. Thanks Pravas Dev for joining and make this conversation more interactive.

Q. Terms and Conditions by apps are appropriate??

Yes 40%               No 30%         Not sure 30%

Next, session was about the Mozilla Organization and its working area and the community which are formed all over the world and how they are working together and share their knowledge. I have also focused on Privacy and security session and provide the practical demonstration that all know how they been tracked and how they can prevent it.

IMG_2917

What is FOSS?

Abbreviation of FOSS is Free or Open Source Software. FOSS programs are those that have licenses that allow users to freely run the program for any purpose, modify the program as they want, and also to freely distribute copies of either the original version or their own modified version.

IMG_2921

Next, In brief introduction about Light Beam : There are many peoples in the world who tracked us everyday, every-minute, Both have focused on The virtual add-on that helps visualize what are the THIRD PARTY TRACKING sites that are snatching your confidential data that you do not want to be tracked!! As result you can then BLOCK those websites for furthur data tracking by that particular website !! By using this Add-on you can block the threat site and or any third party site who been tracked you.

IMG_2924

Students were very much excited to grab the Firefox stickers, and when they got, you can see the happiness on their faces. 🙂

IMG_2910

                                                                    Its my bad pose! 😀

4th session taken by Falgun Rathod on Career in cyber security. (Chapter Leader of OWASP Gandhinagar, 7+ year’s experience in Cyber Security and Investigation. Conducted 70+ seminar and workshop in different Universities and colleges across India. Acknowledge by Mumbai cyber cell, Ahmedabad cyber cell, kerala cyber cell and BSF. He is listed in top 10 ethical hackers and cyber cops of India by India Today and silicon India magazine.) He shows the structure of Cyber Security companies and how many security expert’s required all over the world till 2019. What is the importance of cyber security in Business and other sectors.

IMG_2929

5thSession taken by Viral Parmar on OWASP top 10 Vulnerabilities list. (Chapter leader of OWASP Gandhinagar and also Founder & CEO of ComExpo Cyber Security. 2+ years of experience in cyber security and cyber crime investigation. Core contributor in Mozilla Gujarat and also a Mozilla club captain (Infinite Defence) in Mozilla. He Conducted 30+ seminar and workshop on Cyber Security. He is working with Gujarat cyber cell and Mumbai cyber cell as a cyber-security consultant). He conducted session on OWASP top 10 vulnerability list which are International standards for Web application Security and recognized by each and every top multinational companies, organization, individual and governments, in which he shows SQL-injection attack, Broken authentication, XSS,IDOR(Insure Data Object References), Security Misconfiguration, Sensitive data exposure, missing function level access control, CSRF, using component with known vulnerability and unvalidated  redirects.

In the end we have very interactive session of Q&A with students and professionals with that we ended our event on 16th July 2016. It was awesome day! 🙂

Selfie with enthusiast students, volunteers & team! 🙂 

IMG_2946

What next?

  1. Organize Privacy and security session for university teachers & professors.
  2. Conduct workshops for students which will be full handson.
  3. Create Mozilla clubs in same university.
  4. Conduct more OSW(OpenSource Weekends) to spread awareness about openweb.
  5. Maker Party.

Also published on Medium.

One thought on “MozConnect with OWASP

Leave a Reply to Estefana Buttz Cancel reply

Your email address will not be published. Required fields are marked *