

About us
The OWASP LA (Los Angeles) chapter (https://owaspla.owasp.org) was formed in 2008. We hold meetings on the 4th Wednesday of every month, featuring great speakers on important AppSec topics. Join us for food, drinks, to network and understand what application security is really about.
The Open Worldwide Application Security Project (OWASP) is a not-for-profit, 501(c)(3) organization focused on improving the security of all software. Our mission is to improve software security through Open Source initiatives, community education, and networking. Everyone is free to participate in OWASP and all of our materials are available under a free and open software license.
Become an OWASP Member TODAY
Support your LA Chapter: only $50 for the entire year! ($20 if you're a student)
Upcoming events
4

OWASP LA Monthly In-Person Meeting - FEB 25, 2025
Needs a Location, 1 Will be Announced Soon, Los Angeles, ca, USTOPIC: Make Attackers Cry Outsmart them with Deception Join us for great networking, dinner and drinks, and see a presentation by Rick HorwitzSr. Sales Engineer Fastly
ABSTRACT:
In this session, Rick Horwitz will explore how next-generation web application defense techniques use deception to disrupt account takeover attempts by returning responses that resemble invalid login credentials. Rather than outright blocking the request, this approach introduces uncertainty, making it harder for attackers to understand why their attempts are failing.This method leverages core principles of security deception raising an attacker’s cognitive load, consuming their time, and prompting them to question the reliability of their tools or assumptions. Over time, this added friction can decrease the likelihood that they continue targeting the application.
Because these techniques typically require minimal configuration, they can offer immediate insight into attack patterns and behaviors. These signals help defenders analyze adversary tactics and strengthen overall protections, demonstrating how psychological and operational pressure can complement traditional security controls.Thanks to our SPONSOR: Fastly
Build, Secure, and Deliver. Instantly.Thanks to our HOST:
SPONSORSHIP Opportunities Available
Vendors interested in sponsoring please send an email to sponsorship.la@owasp.orgCODE OF CONDUCT
We hope you enjoy the event, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback/concerns or would like to speak to us, we take these matters very seriously. You can find out more about our policies here:
https://owasp.org/www-policy/operational/conferences-events.html#conference-and-event-anti-harassment-policy22 attendees
SCaLE 23x – the 23rd Annual Southern California Linux Expo
Pasadena Convention Center, 300 East Green Street, Pasadena, CA 91101., Pasadena, CA, USSCaLE23x – the 23rd Annual Southern California Linux Expo, will take place March 5-8, 2026 at the Pasadena Convention Center in Pasadena, CA. **Register Now** using code WASP to receive a 50% discount off full registration!
SCaLE is the largest community-run open-source and free software conference in North America. It is held annually in the greater Los Angeles area.
Several co-located Events, including AstriCon, Cloud Native Days LA, DevOpsDay LA, Open Source Career Day, Open Source Higher Ed, PlanetNix, SCaLE Youth, and, SunSecCon will kickoff the conference on Thursday.
Expo is open Friday - Sunday (just $20 if you want to roam the Expo)
Talks and workshops are Thursday - Sunday.Cindy Cohn, Executive Director / EFF will keynote on Saturday and Mark Russinovich, Chief Technology Officer and Technical Fellow for Microsoft Azure, delivers the closing keynote of the conference on Sunday.
In between, there are dozens of talks and workshops available spanning several tracks: Security, Developer, FOSS @ HOME, Open Source AI, Cloud Native, Kernel & Low Level Systems, Systems & Infrastructure, Observability, General, etc.
Worth noting that this is a family-friendly conference, offering free admission for attendees under the age of 18, including access to the TNG (The Next Generation) SCaLE Youth track.
Don't miss this amazing opportunity to attend this conference and expand your knowledge or brush up on what you already know. **Register Now** using code WASP to receive a 50% discount off registration!
/** THIS IS A PAID CONFERENCE **/
And finally don't forget to visit us at the OWASP Los Angeles booth!12 attendees![OWASP LA Monthly [VIRTUAL] Meeting - Mar 18, 2026](https://secure.meetupstatic.com/photos/event/c/5/e/4/highres_532610660.jpeg)
OWASP LA Monthly [VIRTUAL] Meeting - Mar 18, 2026
·OnlineOnlineTOPIC:Fulfilling your LLM Deployment dreams
Join us for a virtual session featuring Aaron Ansari, Managing Partner at Answer Consulting Inc., with insights into deploying LLMs in real world environments, followed by live Q&A and community discussion.ABSTRACT: As organizations rush to integrate Large Language Models (LLMs) into their core business processes, they face a critical dilemma: embrace the 66% productivity boost offered by generative AI or mitigate the serious risks of data exfiltration and "shadow AI". This session provides a dive into the technical foundations of a robust generative AI system, moving beyond basic chat interfaces to a comprehensive enterprise architecture.
We will explore the flegdling LLM Stack, identifying critical trust boundaries between organizational tenants and the public internet. Attendees will learn:
- The Risk Landscape: An analysis of top threats including prompt injection (OWASP LLM01), insecure output handling, and training data poisoning.
- Architectural Defenses: How to implement Retrieval-Augmented Generation (RAG) to maintain data accuracy and avoid the security pitfalls of fine-tuning on sensitive PII.
- Data Governance: Strategies for applying fine-grained access controls and role-based accounting to vector databases to ensure that AI only serves information to authorized users.
- Operational Security: A "layered onion" approach to security, from model hyperparameter tuning to outer-layer rate limiting and semantic caching.
Leave this session with a foundational framework for deploying AI that is not only innovative but also compliant, secure, and resilient.
CODE OF CONDUCT
We hope you enjoy the event, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback/concerns or would like to speak to us, we take these matters very seriously. You can find out more about our policies here:
https://owasp.org/www-policy/operational/conferences-events.html#conference-and-event-anti-harassment-policySPONSORSHIP Opportunities Available
Vendors interested in sponsoring please send an email to sponsorship.la@owasp.org3 attendees![OWASP LA Monthly [VIRTUAL]
Meeting - Apr 14, 2025](https://secure.meetupstatic.com/photos/event/e/7/a/4/highres_532619300.jpeg)
OWASP LA Monthly [VIRTUAL] Meeting - Apr 14, 2025
·OnlineOnlineTOPIC One Thousand and One AI Prevented CVEs: Vibe Coding a Whole New Supply Chain Defense.
Join us for a virtual session featuring by Brandon Wu is a senior program analysis engineer at SemgrepABSTRACT: Semgrep is on a mission to make it expensive to exploit software. As the team behind the most popular SAST, we built the Semgrep AppSec Platform to deliver industry-leading code, dependency, and secrets scanning so organizations can ship secure code quickly without slowing development. With fast, customizable analysis across large codebases, Semgrep helps teams catch vulnerabilities early and fix them faster. Companies like Snowflake, Plaid, Figma, Lyft, and Dropbox rely on Semgrep to secure their software. Semgrep is backed by top investors including Felicis, Lightspeed, Menlo, Redpoint, and Sequoia.
Thanks to our SPONSOR: Semgrep
Meet Your New AI AppSec Engineer.CODE OF CONDUCT
We hope you enjoy the event, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback/concerns or would like to speak to us, we take these matters very seriously. You can find out more about our policies here:
https://owasp.org/www-policy/operational/conferences-events.html#conference-and-event-anti-harassment-policySPONSORSHIP Opportunities Available
Vendors interested in sponsoring please send an email to sponsorship.la@owasp.org3 attendees
Past events
220





