4:00 PM - 4:15 PM Welcome/Meeting Setup
4:15 PM - 4:45 PM Chapter Business
4:45 PM - 6:00 PM Presentation(s)/Q and A
Topic: Member Presentations:
Speaker: Varghese Babu Palathuruthi
Topic: Web Application Penetration Testing with Burp Suite
Speaker: David Snyder
Topic: An Unexpected Journey
Synopsis Web Application Penetration Testing with Burp Suite
Proxy tools help analyze security vulnerabilities in web applications. They can bypass front-end controls, intercept and manipulate traffic to the target web application and exploit vulnerabilities discovered in the application. One of the most popular penetration test tools used against web applications by defenders and attackers alike is Burp from Portswigger. This presentation gives an overview of Burp tool and its rich features. It will include a quick tour of the lifecycle of a typical web application scan, some of the popular extensions from the Burp marketplace used by testers, and finally, a look at Portswigger's Web Security Academy.
Synopsis: An Unexpected Journey
David Snyder will describe his unusual career journey that led to the cybersecurity work he is doing today. For those early in their career, it demonstrates how things that you never expected or planned for can take you in new directions. For those later in their work life, it shows that with a commitment to continually learning new things you can pivot to a new path when the world changes around you. David’s presentation will conclude with a look at some of his most recent work that connects with things he learned at work during high school and college.
David graduated with a Bachelor’s of Science in Civil Engineering and Engineering & Public Policy, obtained a MBA in Technology Management, and later became a Certified Information Systems Security Professional (CISSP) and Certified Cloud Security Professional (CCSP). He is a member of ISSA and is the Secretary of the Consultants Network of Silicon Valley IEEE Affiliate Chapter.