Dual Event: Mobile App Testing 101 | OWASP Agentic AI Threats & Mitigations

Update:
**********************************************************************************
In anticipation of the high level of interest, and to ensure we safely stay within the venue's capacity limit, we will be capping the in-person attendance to 75 people, in a first-come, first-serve basis.
Doors will open at 6:00 PM, with the event will start at 6:30 PM (EDT).
For those who cannot attend in person, please join us virtually via the livestream!

Description:
**********************************************************************************

Presentation #1: Mobile App Testing 101

Summary:

This session equips security professionals—pen testers, researchers, red/blue teams, and mobile devs—with practical techniques to expose and exploit mobile app vulnerabilities using Corellium. Learn how to rapidly configure virtual test environments, uncover insecure data storage, intercept network traffic, and bypass runtime protections.

Key Learnings:

• Intro to Android & iOS app structure
• Create and configure diverse iOS & Android test environments
• Understand application data structure to identify insecure data storage
• Manipulate runtime behaviour on demand
• Exploit insecure data at rest using Objection
• Intercept and analyze data in transit
• Reverse engineer apps and bypass jailbreak detection
• Automate a significant portion of dynamic testing recommeded by OWASP (MSTG)
• Integrate testing early in development via SDK

Presentation #2: OWASP Agentic AI Threats & Mitigations

Summary:

Agentic AI systems combine generative capabilities with autonomous decision-making—introducing new and complex security risks. This session will walk through key threats and mitigation strategies for agentic AI, drawing from the OWASP AI Threats and Mitigations guide. Attendees will learn how issues like goal drift, memory poisoning, and identity misuse can emerge, and how to build proactive defenses.