OWASP chapter meetings and conferences are always a blast and definately worth attending. I’ll be speaking in London on the 3 April, for those who want to meet up.

The talks planned are:

- PHP Code Analysis: Real World Examples (David Kierznowski)

We delve beyond register_globals and analyse real world examples
of insecure PHP applications.

- Abusing PHP sockets for fun and profit (Rodrigo Marcos)

PHP (PHP: Hypertext Preprocessor) is a server-side HTML embedded
scripting language which provides web developers with a full suite of
tools for building dynamic websites. PHP socket library implements a
low-level interface to the socket communication functions based on the
popular BSD sockets. This presentation will focus on the use of PHP
socket library from an offensive point of view, demonstrating
interesting and creative vectors of attack.

- Web Application Security Badges (Colin Watson)

Web site and web application operators can apply to third party
organisations to request their seal of approval that the web site is
safe from hackers. These security seals are part of a broad
collection of badges that web sites can display, but what are they
testing, should consumers trust them and how do you compare one with
another?