About us
The OWASP Foundation came online on December 1st, 2001 it was established as a not-for-profit charitable organization in the United States on April 21, 2004, to ensure the ongoing availability and support for our work at OWASP. OWASP is an international organization and the OWASP Foundation supports OWASP efforts around the world. OWASP is an open community dedicated to enabling organizations to conceive, develop, acquire, operate, and maintain applications that can be trusted. All of the OWASP tools, documents, forums, and chapters are free and open to anyone interested in improving application security. We advocate approaching application security as a people, process, and technology problem because the most effective approaches to application security include improvements in all of these areas. We can be found at www.owasp.org.
OWASP is a new kind of organization. Our freedom from commercial pressures allows us to provide unbiased, practical, cost-effective information about application security. OWASP is not affiliated with any technology company, although we support the informed use of commercial security technology. Similar to many open-source software projects, OWASP produces many types of materials in a collaborative and open way. The OWASP Foundation is a not-for-profit entity that ensures the project's long-term success.
Upcoming events
1
OWASP Stockholm - AI agents and MCP security
Epicenter Stockholm, Mäster Samuelsgatan 36, 111 57, Stockholm, Stockholm, SEJoin us for a packed in-person OWASP event at Epicenter Stockholm with a focus on AI agents and MCP security.
🗓️ When: 19th of May, 17:30 - 20:00
📍 Where: Epicenter - Malmskillnadsgatan 44a, 111 57 Stockholm. One stair up, we will give directions when you reach that location.🚀 Agenda:
17:30 - 18:00 Gathering and meeting industry peers.
18:00 - 18:05 Intro.
18:05 - 18:40 Talk no.1
18:40 - 19:00 Break and mingling.
19:00 - 19:40 Talk no.2
19:40 - 20:00 Closing words & meeting industry peers.🌟More about the talks:
Linus Lagerhjelm (Builders) - Secure deployments of AI agents
Given the rise of AI agents for performing development tasks, organizations are faced with a whole new set of risks. This talk will outline how we have deployed AI-agents across our organisation in a secure way that others will be able to mimic. It will be highly technical and can serve as an inspiration for how to do similar things in your own application, or just how to securely run AI-agents on your own computer.Amine Raji, PhD (Breakers) - MCP Security After Year One: Attack Patterns, Real Incidents, and What Defenders Need Now
The talk walks through tool poisoning and cross-server attack patterns from the past 12 months, with a live demo against a local agent stack, and concludes with practical controls teams can deploy this quarter.About the speakers
Linus Lagerhjelm
Linus is a multi-faceted professional with experience in software development, machine learning, cloud infrastructure and software security. Linus worked as a consultant for many years and currently working with strategic security at a Stockholm based fintech company.Amine Raji, PhD
Amine Raji is an AI security researcher with a PhD in Computer Science and fifteen years securing software for aerospace, banking, defense, and automotive. CISSP. His practitioner-led research, including the MCP Security Top 10 threat model, is available at aminrj.com, where he publishes weekly on AI security intelligence.65 attendees
Past events
38
Group links
Members
1,644
