OWASP

AWS meetups are back in town! This chapter is the 1st one this year and dedicated to **S3.** But we look on the storage from completely different angles: **From Developer's to Penetration and Security perspective.** More info soon, and the meantime we reveal topics, and... 🗓 **Save the Date**: Mark your calendar 🍕 + 🍺 = Let's gather around pizza and beer at **Hevre** or Watch the stream on [YouTube (Link)](https://youtube.com/live/Tx7lmDVTVKo) Hosted by: **Maciej Lelusz**, AWS Hero AWS Community Builders: **Maria Kmita & Pawel Kusinski** 🎤 **Speakers**: 〰️ *„*"Optimizing S3: A Million-Dollar FinOps Journey" **Avihay Tsayeg,** Senior Staff DevOps Engineer, Cloudinary 〰️ *„UnS3cure - Buckets full of holes"* **Paweł Kusiński,** Penetration Tester and Security Researcher 💡 Details about Speakers & Talks💡 **Avihay Tsayeg:** joined Cloudinary five years ago and is a key member of the Infrastructure group, where he leads the FinOps domain. With over 20 years of experience in software development, specializing in the DevOps–FinOps intersection, Avihay brings deep expertise in cloud cost optimization. ☞ will speak about: In his talk, he will share actionable strategies for mastering resource cost management within AWS S3. **Paweł Kusiński:** Penetration Tester and Security Researcher focused on app and cloud security. His work includes penetration tests and infrastructure audits across a wide range of IT projects. Passionate about knowledge sharing, he leads workshops, gives conference talks, teaches at universities, and is an AWS Community Builder. Outside of work, he plays CTFs as a member of justCatTheFish and has an unhealthy habit of buying too many Legos - despite having absolutely no space left for them. ☞ will speak about: Time goes by, AWS keeps adding new security features, and yet year after year, we hear about more data leaks and breaches involving S3 buckets. Data spills by the terabyte, companies apologize, and shortly after, the cycle repeats. How does this keep happening? What is the core problem? How do attackers find their targets? We’ll walk through the most common methods and configuration mistakes - and if time allows, we’ll try to secure everything properly as well! And who knows - maybe we'll uncover a million-dollar leak during the presentation?

**Beer, Pizza and IoT Meetup (DigiCert Special)** We would like to invite you to our next IoT Meetup at Concept Reply at the Reply offices in Munich. **Agenda** 19:00 – Securing the future Internet of Things with ML-KEM and ML-DSA (Talks by Kevin Hilscher and Daniel Stroehmann from DigiCert) 20:00 – Pizza & Networking **Description** Today’s Internet of Things (IoT) relies on a variety of protocols and communications technologies…CoAP, LwM2M, LoRaWAN, NB-IoT, Wi-Fi, Thread … many of which are not quantum-safe. While large-scale quantum computers capable of breaking current encryption aren’t yet available, the concept of “harvest now, decrypt later” is a significant concern. Now that NIST has released final versions of its first three Post-Quantum Cryptography (PQC) standards the race is on to make IoT quantum-safe. **We will explore** * What it takes to make an IoT solution quantum-safe. * The algorithms regulators, such as BSI, are recommending. * How to implement and transmit data between a device and an MQTT broker with TLS 1.3, ML-KEM, and ML-DSA using open-source tools. Please feel free to forward this invite to anybody who might like to take part. PLEASE NOTE: This Meetup will get streamed and recorded so you may get filmed by taking part. Doors open at 7PM for this one due to an event before. This event is exclusively for those with a professional background. Due to limited capacity, we reserve the right to restrict admission. Pizza, beer and seats first come first serve! :)

Window functions have nothing to do with the Windows operating system but provide a “window” to a result set when used in SQL queries. They are powerful, set-based methods to view data in unexpected ways. Window functions provide easy, set-based solutions to solve some common problems: * Using running totals * Performing operations in intervals * Identifying data gaps and islands * Performing aggregates without losing detail Many people are confused by window functions and do not know how to use them properly. This session will explore window functions, how they work, and how to use them. Demonstrations with several examples will solidify how window functions can simplify queries and make them more powerful.

Bring your Raspberry Pi, Arduino, microcontroller, or any other electronic project and join fellow electronics makers for a night of creativity and collaboration! This session is open forum to share your current projects—whether complete or in progress, it’s all interesting! Whether you’re deep into embedded systems, exploring new ideas, or just getting started, you’ll find a welcoming space to collaborate, share, and get inspired. **New to electronics or curious about tinkering?** You’re absolutely welcome. If you’re a beginner and want to experiment, I’ll have a couple of starter kits available so you can try things out—whether that’s blinking your first LED, putting something on a display, or experimenting with simple sensors. No pressure and no experience required—just an interest in learning and building. While we continue to pursue a more permanent venue for this Meetup, we’ll be using public library facilities based on availability. This session will be at the Worthington Park Library in the Olentangy Meeting Room.

Columbus Code & Coffee is an inclusive, informal co-working session. People of all skill levels attend, and we love it that way. Many people (optionally) bring projects to work on, and many other people (optionally) socialize the entire time. It's entirely up to you! **What to Expect at the Intro Circle** \~\~\~\~\~\~\~\~\~\~\~\~\~ Near the beginning of the event (1:30 pm), we do a standup: * Organizer announcements, updates, and logistics Round 1 - (7 secs max): * Your name * What you're working on * What you can help others with Round 2: * Community events you wanna plug. If none, that's cool too. Round 3: * Job opportunities you're hiring for OR announce that you are looking for one. If none, that's cool. After the introduction circle, everything is self-organized! Feel free to work alone, pair up, attend one of our workshops/presentations, or mingle!

**About this Event** Join the OWASP St. Louis Chapter for our March event! We are planning to include a discussion of the OWASP Top 10 for LLM as well as have a guess speaker: Joseph (Mark) Clark Rubin Brown topic: Incident Response (\* OWASP does not endorse or recommend commercial products or services, allowing our community to remain vendor neutral with the collective wisdom of the best minds in software security) **Event Details** 📍 **Location:** RubinBrown, 7676 Forsyth Blvd., Suite 2100, Saint Louis, MO 63105 🗓 **Date/Time:** February 10, 2026 / 6:00pm CST **Food and Drink will be provided!** Please RSVP so that we can plan accordingly. ℹ️ **Parking Directions:** * Google map to “North Lyle Avenue & Forsyth Boulevard, Clayton, MO 63105” Link: https://maps.app.goo.gl/WYqyZ3Jv9cUBBF289 * Enter the **Parking Garage #4** (from Forsyth Blvd) next to Dry Bar * **Pull a ticket at the gate** and proceed into the garage, turning right. * Up the ramp is visitor parking. **You may have to go up past the 6th floor.** * **Take elevator to \*L** (Lobby of Centene Plaza C) * Check in at the OWASP sign-in table in the lobby; you'll be escorted up * **Bring your parking ticket with you** to get validated at the meetup. **Who Should Attend** * Application & security professionals * Software engineers and developers * IT leaders and managers * Anyone with an interest in application security * You DO NOT need to be an OWASP member to attend! **About OWASP** The Open Worldwide Application Security Project (OWASP) is a nonprofit foundation dedicated to improving the security of software. Local chapters provide opportunities to learn, network, and collaborate with others in the field. Come to learn more and participate in OWASP Saint Louis - your voice will continue to help shape what OWASP Saint Louis becomes next.

Our monthly PHP meetup. A virtual shindig courtesy of Zoom. Check back here for the details around 6:15 pm

**New Dojo Location!** **Draft Day Columbus** 1130 Dublin Road Columbus, OH 43215 We're going to try a new dojo location for a few weeks and see how it works Dojos are informal Python group study sessions where everyone interested in Python gathers to learn about Python, help others with Python, or just hang out. Everyone is welcome from Python beginners to experts. Bringing a laptop is encouraged (we'll have extension cords and power strips). If there's something you want to learn leave a comment on this invite so we can plan ahead. We're looking for topic suggestions and people interested in presenting at our monthly meetings. To this end we've set up a survey form at [https://docs.google.com/forms/d/15eBKF1nQQ2XS5gzD4rvhVRHMBEj7lJtHuA9wXupS3Uc](https://docs.google.com/forms/d/15eBKF1nQQ2XS5gzD4rvhVRHMBEj7lJtHuA9wXupS3Uc)

Come out to Improving for our monthly iOS and Mac meetings. This Month's Presentation: Nothing yet. (You should volunteer). What is Cocoaheads (http://cocoaheads.org/)? CocoaHeads is a group devoted to discussion of Apple Computer's Cocoa Framework for programming on MacOS X and iOS (including the iPhone, iPad and Apple Watch). During monthly meetings, members present on their projects and offer tutorials on various programming topics. What is BuckeyeCocoa (http://buckeyecocoa.org/)? BuckeyeCocoa is a group of Objective-C/Swift developers/enthusiasts. We host monthly Cocoaheads and near-weekly NSCoder meetings in Columbus, Ohio. The meetings are free to attend. Presentations! Presenters welcome! We are always in need of people willing to present material. Any Swift and/or Objective-C related topic is welcome. Times can be 5 minutes (i.e. lightning talks) to a maximum of 2 hours. Interested? Contact info is on the BuckeyeCocoa website. To volunteer for a presentation contact us at @BuckeyeCocoa on Twitter. Follow us on Twitter! @BuckeyeCocoa (https://twitter.com/#!/Buckeyecocoa/) For more information: http://buckeyecocoa.org/