What we're about

Leaders, contributors, and anyone interested in the OWASP DevSlop project. DevSlop is a collection of DevOps-driven applications, specifically designed to showcase security catastrophes and vulnerabilities for use in security testing, software testing, learning and teaching for both developers and security professionals.

Upcoming events (3)

Secure your serverless! Offense and Defensive Measures with Teri Radichel

So you've gone serverless. Some companies are building out entire architectures on serverless infrastructure. What does security look like in this brave new world? How is it the same, and how is it different? Understand the threat model, attacks and defenses you can apply to your serverless applications. Cloud and cybersecurity expert Teri Radichel will help us answer these questions and provide advice on how to defend our serverless infrastructure and applications. Join us on Sunday, April 5th, 2020 at 1 PM EST on our YouTube Channel (Live): http://www.youtube.com/c/OWASPDevSlop OUR GUEST: TERI RADICHEL Teri Radichel is the CEO of 2nd Sight Lab, a cloud and cybersecurity company providing training, pentesting, and assessments. She is the author of the book Cybersecurity for Executives in the Age of Cloud and a 5-day cloud security class. She was on the original team that helped Capital One move to the cloud. Since then, she has helped many other companies with practical cloud security consulting and training and assessments. Teri has presented at conferences such as RSA, AWS re:Invent and re:Inforce, Microsoft Build, ISACA Congress, IANS, OWASP AppSec Day, ServerlessDays London, Countermeasure, and BSides conferences. IANS Faculty, Infragard, Founder of Seattle AWS Architects & Engineers, AWS Hero, SANS 2017 Difference Makers Award, Master of Software Engineering, Master of Information Security Engineering. You can find Teri on social media: https://twitter.com/TeriRadichel

An AWSome Guide to DevOps

OWASP DevSlop YouTube Channel

AWS provides native services that help you practice DevOps. These tools automate manual tasks, help teams manage complex environments at scale, and keep engineers in control of the high velocity that is enabled by DevOps. In this live session, Cloud Support Engineer at AWS, Zainub Amod, will go over AWS services, such as CodeCommit, CodePipeline, CodeDeploy to implement DevOps. OUR GUEST: ZAINUB AMOD Zainub has 3 years of software engineering experience and has spent the last year as a Cloud Support Engineering at Amazon Web Services (AWS) in South Africa. Live on YouTube: https://youtu.be/k9WpRUVGRv0

Logging & Monitoring on AWS 101

OWASP DevSlop YouTube Channel

Logging and monitoring is an absolute must if one is to achieve industry and regulatory compliance. What tools does AWS provide to help customers achieve this? Let’s talk through some of the tools available for logging & monitoring on AWS. Live on YouTube: https://youtu.be/ylZXOfBT-UU OUR GUEST: VELISWA BOYA Veliswa Boya is an AWS Cloud Engineer working for one of South Africa’s biggest banks Standard Bank. She has an absolute passion for helping others succeed in tech and to this end she blogs and speaks about what she’s learned in tech. She is a marathon runner and enjoys kickboxing.

Photos (31)