Next Meetup

July: Reducing the Attack Surface of a .Net OWIN Website
Arrive and eat: 6 to 6:30 Presentation by Clarke Bowers: 6:30 to around 7:30 Q&A, closing: 7:30 to 8 OWIN is an alternative to the IIS HTTP pipeline. It provides explicit control of the exposed surface of your web application. OWIN runs in a variety of environments: Window Server, Windows EXE, IIS Application, Linux. It optionally support ASP.NET, Routing and MVC. Topics covered will be: pipeline, file exposure, routing, REST services, SQL injection, Entity Framework and OData. By understanding how these facilities work, you have expose only the services you want to the web. ~~~~~ Clarke Bowers is an inventor and software architect with more than 35 years of software engineering experience. He owns Clarke Bowers Consulting, which provides software development services for security-conscious clients such as Becton Dickinson, Exelon, the American Institute of Certified Public Accountants, the Naval Research Library, and the Mexican Government's voting system. His interests include object-oriented design, n-tier knowledge, IoT and cloud development, and a broad range of languages, databases, tools, and technologies. Clarke holds a Bachelor of Science degree in Computer Science from Lehigh University and is a Microsoft Certified Solution Developer. He owns five patents. Learn more:


1834 South Charles St · Baltimore, md

1 comment

What we're about

This group is the Baltimore chapter of OWASP, a grass roots organization that works to make application security visible. Our topics tend to be technical and informational (not vendor specific) and we are a friendly, fairly welcoming group of people. Meetings are typically free! OWASP membership ( (not required to attend meetings) is inexpensive.

What is OWASP?
OWASP is an international non-profit with a mission: to make application security visible so that people and organizations can make informed decisions about application security risk.

The OWASP community works to create freely-available articles, methodologies, documentation, tools, and technologies.

Who can attend?
There is no bar for entry. All who are interested are welcome!

To be a SPEAKER at the Baltimore OWASP Chapter, contact any of the chapter leaders with your topic idea related to an OWASP project, independent research, or software security. Also contact us if you would like to be a HOST (providing meeting space) or SPONSOR.

Welcome once again. We hope to see you soon.



Members (243)

Photos (3)