What we're about

OWASP London Chapter

OWASP (The Open Web Application Security Project) is a worldwide not-for-profit organisation focused on improving the security of software. With over 200 local Chapters worldwide and 45,000+ volunteers OWASP's open community is dedicated to enabling organisations and individuals to develop and maintain applications that can be trusted. OWASP's meet-ups, tools, standards, guidelines, documents and forums are free and open to anyone interested in improving application security.

Visit OWASP London webpage here: https://www.owasp.org/index.php/London

Follow us on Twitter: https://twitter.com/OWASPLondon

Follow us on LinkedIN: https://www.linkedin.com/company/owasplondon

"Like" us on Facebook: https://www.facebook.com/OWASPLondon

Watch recordings of talks presented at our events on our YouTube channel: https://www.youtube.com/OWASPLondon

^Please subscribe to our YouTube channel to get notified when the latest video recordings of our talks get published.

We are also on Slack: https://owasp.slack.com #chapter-london channel (for Slack invites visit: http://owaspslack.com/ (http://owasp.herokuapp.com/).))

We also have a mailing list, sign-up here: https://groups.google.com/a/owasp.org/forum/#!forum/london-chapter/join

We usually run 7-10 events per year: meet-ups ("Chapter Meetings"), Capture The Flag (CTF) tournaments, Hackathons, workshops and hacking/cyber-security themed pub quizzes.

You don't have to be an OWASP member to attend any of our meetups - they are free and open to everyone interested in Application Security, booking is required.

There is a paid membership, which is a donation to the OWASP Foundation - it gives you discounts on many cyber-security conferences around the world, voting rights, @owasp.org email address and many other benefits. Join OWASP Global Foundation as a paid member here: https://www.owasp.org/index.php/Membership

Upcoming events (2)

OWASP London [IN-PERSON] Chapter Meetup

Needs a location

PLEASE REGISTER FOR THIS EVENT USING EventBrite Link:
https://www.eventbrite.co.uk/e/480818028667

^The meetup location details and registration form are on EventBrite

###

TALKS:

OWASP Introduction, Welcome and News - Sam Stepanyan, Sherif Mansour and Andra Lezza

Welcome and a brief update on OWASP Projects & Events from the OWASP London Chapter Leaders

Talk 1: "Preventing subdomain takeover with OWASP Domain Protect" - Paul Schwarzenberger

Paul Schwarzenberger, project leader of OWASP Domain Protect, describes how the OVO Energy Bug Bounty program led to the launch of a new OWASP project to prevent subdomain takeovers, and gives a live demonstration of detection of vulnerable domain records, followed by automated takeover.

Talk 2: "The Security Tools Crash and the Next Generation of Cloud Native Platform" - Mark Curphey

Mark Curphey, founder of OWASP recently wrote an article called The Security Tools Crash is Coming that had a lot of praise from security practitioners and unsurprisingly met with some disdain from some security startup founders and venture capitalists. In this talk Mark will run through the key points of the article and then talk about what he believes in the next generation of tools meeting AppSec and CloudSec into interoperable cloud native platforms.

Talk 3: OWASP 2023 - Listening Tour
Mark Curphey was recently elected to the 2023 OWASP Board on a manifesto to modernize OWASP. He is on a tour of European chapters listening to feedback from members and chapter attendees about what they would like to see OWASP do. This session will be at the end of the night, so we can run over and continue the conversation in the pub

###

SPEAKERS:

Paul Schwarzenberger (@paulschwarzen)

Paul Schwarzenberger is a cloud security architect and DevSecOps specialist, using an agile DevSecOps approach to lead the implementation and migration of critical systems to public cloud. Paul has extensive experience leading a wide range of cyber security engagements for customers across sectors including UK Government and financial services. Paul is a speaker on Cloud Security and DevSecOps at conferences such as (ISC)2 Congress, fwd:cloudsec, Security BSides, DevSecCon, 44CON, Enterprise Cloud Computing, CRESTcon, DevSecOps London and now OWASP.

Mark Curphey (@crashappsec)

Mark is the founder of OWASP, he is also founder and CEO of SourceClear (acquired by Veracode in 2018) and the co-founder of Open Raven (https://www.openraven.com), a data security company. Mark moved to the U.S. in 2000 to join Internet Security Systems (now a part of IBM), he also held roles including director of application security at Charles Schwab, VP of Professional Services at Foundstone, McAfee and lead the security tools team at Microsoft. Mark holds a Masters of Information Security from Royal Holloway University. After having lived for many years in Seattle and San Francisco Mark makes his return to Great Britain where he continues to work on his next big project. Mark is also an avid cyclist.

### -----

If you wish to attend this meetup please register on EventBrite here:

### https://www.eventbrite.co.uk/e/480818028667

***

CODE OF CONDUCT

We hope you enjoy the event, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback/concerns or would like to speak to us, we take these matters very seriously.
OWASP aims to provide a harassment-free experience for everyone, regardless of gender, sexual orientation, disability, physical appearance, body size, race, age, or religion. We do not tolerate harassment of event participants in any form.
Additionally, participating in OWASP events means you shall also adhere to the OWASP Code of Conduct which you can find here: https://owasp.org/www-policy/operational/code-of-conduct

1
2023 Global AppSec Dublin

Network event

The Convention Centre Dublin

2023 Global AppSec Dublin. Designed for private and public sector infosec professionals, the two-day OWASP conference equips developers, defenders, and advocates to build a more secure web. We offer educational 1-day and 2-day training courses on February 13-14. Join us for leading application security technologies, speakers, prospects, and the community, in a unique event that will build on everything you already know to expect from an OWASP Global Conference.

Past events (35)

OWASP London Chapter [IN-PERSON] Meetup

Needs a location

Photos (89)