Loading…
OWASP Global AppSec US 2021 has ended
Thursday, November 11
 

9:00am PST

25 Years in AppSec: Looking Back, Looking Forward On-Line

10:00am PST

Ensuring Git & CI/CD Pipeline Security & Integrity On-Line We’re not in HTTP anymore: Investigating WebSocket Server Security On-Line Ending Injection Vulnerabilities On-Line Demystifying the Digital Pandemic On-Line Who’s in control: Human or Machine? On-Line

10:30am PST

How to Use Your Vulnerabilities to Train Your Developers on Security On-Line

11:00am PST

GitHub On-Line All your Ether are belong to us (a.k.a Hacking Ethereum-based DApps) On-Line How to build a security mindset On-Line Metabadger: Automating IMDS Protection at Scale in AWS On-Line Practical Threat Modeling for real-world and Cloud Situations in our hybrid and WFH World On-Line

11:30am PST

Changed Responsibilities in Modern Development Practices On-Line

12:00pm PST

Lunch/Expo Hall On-Line

1:00pm PST

Check Point On-Line Azure Vulnerability Testbed (AzGOAT) On-Line Automated Serverless Security Testing: Delivering secure apps continuously On-Line How to Thwart Malicious Automation and Kick Bot Butt for $0 On-Line Container Security: It’s All About the Supply Chain On-Line

1:30pm PST

Indusface On-Line

2:00pm PST

Keynote On-Line

3:00pm PST

Are you safe from OWASP #11 On-Line Harmonizing the OWASP API and Application Top 10 Lists On-Line The How and Why of the OWASP Top Ten 2021 On-Line Bots have gone phishing, but all they get is the boot On-Line Security Observability 101: Thinking Inside the Box! On-Line

3:30pm PST

Why security fails, and how we can solve for it On-Line

4:00pm PST

Insiders Guide to Mobile AppSec with Latest OWASP MASVS On-Line Building Security Champions On-Line SBOM SmackDown: Conquer dragons in the shadows with OWASP CycloneDX On-Line Purple Teaming with OWASP PurpleTeam On-Line

5:15pm PST

OWASP Leaders Meeting On-Line
 
Friday, November 12
 

9:00am PST

Keynote On-Line

10:00am PST

Magecart - The Rising Threat to e-commerce Websites On-Line Data at Rest Encryption - Going Beyond the Basics to Address Modern Attacks On-Line OWASP cautions against “insufficient logging & monitoring.” What does sufficient look like? On-Line Why SecDevOps is the new way in Cybersecurity? On-Line

11:00am PST

How hackers can breach your C.I / C.D systems On-Line Automating Architectural Risk Analysis with the Open Threat Model format On-Line 600 apps in 60 days: our journey to uncover vulnerable dependencies at scale with OWASP Dependency-Check On-Line Why checking your infrastructure-as-code for misconfigurations is not enough – How to secure your cloud native applications On-Line

12:00pm PST

Lunch/Expo Hall On-Line

1:00pm PST

Exploiting web messaging implementations On-Line OWASP ESAPI – A Retrospective: The Good, the Bad, & the Ugly On-Line Roadblocks for CSP and Where to Find Them On-Line Scaling Security through Context Based Security Assessments On-Line

2:00pm PST

We Deserve Rights On-Line

3:00pm PST

Outside the box: pwning IoT devices through their applications On-Line Data-Driven AppSec Champions Programs – Benchmarking Your Program with Numbers On-Line Cluster Wrangling: How to make Kubernetes clusters secure and usable On-Line OWASP Open Application Security Curriculum On-Line

4:00pm PST

Application Threat Modeling Implementation Tips and Tricks On-Line Security Design Anti-Patterns – Creating Awareness to Limit Security Debt On-Line Web Application Honeypot Threat Intelligence On-Line OWASP ZAP & DeepFactor Continuous AppSec Observability: Made For Each Other! On-Line
 
Filter sessions
Apply filters to sessions.
Thursday, November 11
Friday, November 12
  • Breaker
  • Builder
  • Defender
  • DevSecOps
  • Exhibitor Track
  • Keynote
  • Lunch/Expo Hall
  • OWASP Leaders Meeting
    • On-Line