OWASP Leiria Meetup #3 - "The Old Glass Factory"

OWASP Leiria is excited to invite you to an engaging evening filled with technology insights, networking opportunities, and inspiring discussions.
A special thanks to our fantastic sponsors, HLink and Setwin, for making this event possible!

📅 Date: September 19th, 2025
🕕 Time: 18:30 - 20:30
📍 Location: HLink offices (Marinha Grande)

Agenda:
18:30 – Check-in & Networking
Kick off the evening in a relaxed setting, perfect for connecting with fellow professionals before the talks commence.

19:00 Event Opening
🎙️ Hosted by Teresa Pereira & Luís Serra (OWASP Leiria) & Emanuel Duarte (CEO @ HLink & Setwin)

19:15 – Build Your Software Like a Fortress: Secure Configurations as Your First Line of Defense
👨‍💻 Daniel Pinto (CTO & Senior Software Engineer @ Setwin)
Abstract: When building modern web applications and APIs, many developers focus on writing secure code — but overlook the crucial impact of deployment configurations. From authentication layers to RBAC, from HTTPS enforcement to header settings and firewall rules, misconfigurations remain one of the top causes of security breaches today.
In this talk, we’ll explore how simple configuration decisions can have a massive impact on your application’s security posture. We'll walk through real-world examples, common pitfalls, and practical strategies to harden your software during deployment — without introducing complexity or slowing down development.
Whether you're a developer or part of a DevSecOps team, you'll leave with actionable insights to help you build secure-by-default systems from the ground up.

This session was prepared in collaboration with Ricardo Oliveira, Head of Cybersecurity at HLink.

19:45 – AI-Driven Offense: Enhancing Every Phase of Web Testing
👨‍💻 José Irio (Cybersecurity Consultant @ VisionWare)
Abstract: Artificial Intelligence is rapidly reshaping offensive security. In this talk, we’ll explore how AI can be practically applied to improve web application testing. We'll break down each phase of a typical assessment (reconnaissance, exploitation, and reporting) and highlight existing AI-powered tools developed by the security community. From automating tedious tasks to uncovering insights that might otherwise be missed, these tools demonstrate how AI can help testers improve both the efficiency and depth of web app security assessments.

20:15 – Networking & Event Closing 🍻

🎟️ Reserve Your Spot: Don’t miss this incredible opportunity!

We can’t wait to see you there! 🚀