[sage-hamburg] Fwd: Invitation to OWASP Stammtisch Hamburg: OWASP secureCodeBox project | What's new in testssl.sh
Dirk Wetter (privat)
dirk+guug at drwetter.de
Mo Apr 21 22:14:30 CEST 2025
Moin,
FYI: Da die Themen netz- bzw. sicherheitslastig sind, ist das vielleicht für den/die eine/n oder andere/n interessant. Kommt gerne vorbei!
Wenn sonst jemand einen Vortrag in der Schublade hat oder noch dran zimmern muss, sag mir gerne Bescheid, dann machen wir mal wieder ein SAGE-Treffen. Vielleicht gibt es auch jemanden in Bekanntenkreis...
Schöne Restostern, Dirk
-------- Forwarded Message --------
Subject: Invitation to OWASP Stammtisch Hamburg: OWASP secureCodeBox project | What's new in testssl.sh
Date: Mon, 21 Apr 2025 18:04:06 +0200
From: Dirk Wetter <dirk at owasp.org>
To: germany-chapter at owasp.org
Moin Hamburg!
we'll have a meeting this week with one regular longer talk and a shorter one.
Again, we'll be guest at Check24, thank you!
TL;DR
-------
Start: 6:30 pm sharp, April 24th, Thursday
Doors open for socializing 6:00pm. Pls be on time for the talk
Location: An der Alster 64, Check24, 7. OG
Talks: OWASP secureCodeBox project | What's new in testssl.sh
Speakers: Jannik Hollenbach | Dirk Wetter
If possible let me know when you're planning to attend via e-mail or meetup: https://www.meetup.com/owasp-hamburg-stammtisch/events/307174646/?slug=owasp-hamburg-stammtisch
Abstract 1
----------
The OWASP secureCodeBox project aims to provide a unified way to run and automate open-source scanning tools like nmap, nuclei, zap, ssh-audit, and sslyze to continuously scan the code and infrastructure of entire organizations.
This allows setting up automated scans that will regularly scan internal networks and internet-facing systems for vulnerabilities. The SCB also allows defining rules to automatically start more in-depth scans based on previous findings, e.g., to start a specialized SSH scan if a port scan discovers an open SSH port.
Abstract 2
----------
testssl.sh is being released in version 3.2 and it comes with some interesting features like postquantum key exchange or correctly speaking PQ KEMs. The short talk will give you a heads up where you probably already in use them without knowing and how you can check the server whether the server supports it. The talk will briefly describe further features of the new release and what's planned for the feature.
About our OWASP meetings
------------------------
Our meetings are about software and their security in the Internet and/or information security in general. All meetings are free, open to everyone and free of charge, with or without membership.
You'll be meting people who deal with IT security either professionally or privately: Developers, managers, “pen testers” and anyone interested in (mostly web) security. The atmosphere is open and relaxed. We're all about exchanging experiences, talking tech and networking. If you want to sell products or services, you're in the wrong place. You are very welcome to pass on a tip about our meetings to your colleagues or acquaintances.
Schönen Gruß, Dirk
--
OWASP Volunteer
Send me encrypted mails (Key ID 0x4D9CA7F2E2FA20B3)
-------------- nächster Teil --------------
Ein Dateianhang mit Binärdaten wurde abgetrennt...
Dateiname : OpenPGP_0x51A9A033E39A5E02.asc
Dateityp : application/pgp-keys
Dateigröße : 6162 bytes
Beschreibung: OpenPGP public key
URL : <http://lists.guug.de/pipermail/sage-hamburg/attachments/20250421/4b3dcdcf/attachment.key>
-------------- nächster Teil --------------
Ein Dateianhang mit Binärdaten wurde abgetrennt...
Dateiname : OpenPGP_signature.asc
Dateityp : application/pgp-signature
Dateigröße : 236 bytes
Beschreibung: OpenPGP digital signature
URL : <http://lists.guug.de/pipermail/sage-hamburg/attachments/20250421/4b3dcdcf/attachment.sig>
Mehr Informationen über die Mailingliste SAGE-Hamburg