And we're 🔴 LIVE - join our webinar and panel with Josh Grossman 👻(@[email protected]) from OWASP® Foundation + Bounce Security & Mic McCully of Oligo Security in an EPIC AppSec Smackdown of Reachability vs. Exploitability There's still time to join us: oligo-security.zoom.us/webinar/regist… #AppSec #CloudNativeSec

This was good fun and was recorded so you should be able to catch it later. Thanks to Mic and Oligo Security and to Sharone Revah Zitzman 🎗️💙🇮🇱 for being a great host!

I don't do Windows but here are some (initial) details about why the CrowdStrike's CSAgent.sys crashed Faulting inst: mov r9d, [r8] R8: unmapped address ...taken from an array of pointers (held in RAX), index RDX (0x14 * 0x8) holds the invalid memory address John Hammond

Anyone in my network works for Twitter/X Support? OWASP London (@owasplondon) account is in trouble: X asking to agree with the new Terms & Conditions: every time I click "Agree and continue" I get error "Oops, something went wrong. Please try again later" (stuck on this error!)

Got my copy but you only have a few days left to get yours! There is still time to sign up for "Accelerated AppSec – Hacking your Product Security Programme for Velocity and Value" at Black Hat #BHUSA! Learn how to design and operate an #AppSec program that really works!

Excited to welcome Ryan Armstrong onto the OWASP ASVS Project working group! As a long-time user and recent contributor, Ryan brings his insights in using ASVS for pen testing engagements to help us improve for version 5.0!

We have started going through the responses to our "Call for Volunteers" but you still have time to get in touch if you are interested in helping the @OWASP ASVS project. Let us know here: docs.google.com/forms/d/e/1FAI…

Looks like an amazing lineup, really sad I can't be there :(

Big moment as the 2000th item gets opened in our GitHub repo. 😅 Lots more work to do though. 💪

The 3rd 🔶Privacy Threat Modeling Workshop (WPTM) 🔶 will be fully remote and free to attend! 🙌 The program will be a mix of research presentations 🎓, a panel session 💬, updates on the latest developments 💡 in the privacy threat modeling world. And I get to do the keynote 🤩

Ready for the 2nd day of delivering my Accelerated AppSec course for Bounce Security virtually as part of Black Hat #BHUSA!

Why is Privacy Threat Modeling so difficult?🤔 💡Privacy is a complex concept! You need to cover all of its layers of complexity 🎯 to fully understand the privacy implications. On arXiv (doi.org/10.48550/arXiv…) or LinkedIn (linkedin.com/pulse/unraveli…) cc Avi Douglen

Do you have questions about the ASVS? 🤔 Wondering how to implement specific requirements? 📊 Curious about prioritizing security controls? 🔍 Need clarification on any aspect of ASVS? Drop your ASVS-related questions in the comments below!

🚀 Exciting News for Web Security Enthusiasts! 🛡️ The upcoming OWASP Application Security Verification Standard (ASVS) version 5.0 is leveling up with a brand new WebRTC chapter! 🎉 Want to dive deeper? Check out the full WebRTC chapter here: github.com/OWASP/ASVS/blo…

Aside from everything else, making your development teams do irrelevant or generic training is a surefire way to make them less engaged with security, therefore making your job harder.

Excited to share the latest OWASP Top 10 Proactive Controls! Check it out here: top10proactive.owasp.org Developers, want to contribute? The GitHub repo is linked at the top right of each page. Or join the effort and help us improve: top10proactive.owasp.org/introduction/c… #AppSec #OWASP