Hands-on Secure Coding Workshop

Speaker: Jerry Hoff & Arshan Dabirsiaghi

This fun and approachable 3-hour OWASP workshop provides developers and AppSec professionals with essential knowledge and practical skills for secure coding in today's evolving threat landscape. Participants will gain hands-on experience with industry-standard security frameworks while learning to identify and mitigate common vulnerabilities that plague modern applications. This short bootcamp combines theoretical foundations with practical coding exercises, ensuring attendees leave with actionable skills they can immediately apply to their development work. Whether you're new to security-focused development or looking to refresh your existing knowledge, this comprehensive session covers both timeless security principles and cutting-edge challenges facing developers in 2025.

In this workshop we will cover:

OWASP Foundation Documents: Deep dive into the OWASP Top 10 vulnerabilities and Application Security Verification Standard (ASVS) to understand critical security requirements and common attack vectors

Modern Secure Coding Practices: Learn contemporary approaches to writing secure code, including secure design patterns, input validation, authentication, and authorization techniques relevant to 2025 development environments

AI-Generated Code Security: Explore the unique security challenges posed by AI-assisted development tools, including how to audit, validate, and secure code generated by AI systems

Hands-On Security Implementation: Participate in practical coding exercises that demonstrate vulnerability remediation, secure code review techniques, and real-world security testing scenarios