Come join us at the Open Security Conference!
Dates: 2025, October 2-5
Location: Rückersbach, close to Frankfurt am Main, Germany
Website: https://opensecurityconference.org/
FAQ: https://opensecurityconference.org/faq/
Register: https://register.opensecurityconference.org/
#osco #osco25 #CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity #OpenSpace [lisi]
New by me: "Stay frosty and test your apps" isn't cutting it anymore.
I'm celebrating 5 years of Alice and Bob Learn Application Security! If my books or courses helped you get a job, build an #appsec program, or change careers, please comment in the thread. I would absolutely love to hear from you! 
HTTP/1.1 desynchronization attacks (aka request smuggling) can put web apps at risk.
Fastly stops them with:
Strict parsing Edge normalization Blocking bad requests
Learn more: https://www.fastly.com/blog/demystifying-fastlys-defense-against-http-desynchronization-attacks
#Security #AppSec
Memo: Our Call for Presentations for German #OWASP Day 2026, taking place on Nov 26 in Düsseldorf, ends this Sunday (August 24)!
Don't miss this chance if you would like to present your #appsec related topic to a broader audience!
Missed one of my past conference talks? Let’s fix that.
I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.
“XSS Deep Dive”
https://twp.ai/4ipctW
Want to learn the absolute basics of application security? Check out this helpful YouTube playlist! #appsec
https://twp.ai/4ioWqD
Missed one of my past conference talks? Let’s fix that.
I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.
“Security is Everybody’s Job” https://twp.ai/4ipe5i
No worries, you haven't missed the registration for the Open Security Conference 2025. 
Yet be aware, seats are limited. So, what's keeping you from registering today? Let's offer a few more reasons why.
The people. We all bring the topics and co-create the conference together. https://opensecurityconference.org/open-space/
The keynote speakers. Brilliant practitioners to learn from. https://opensecurityconference.org/conference/keynotes
The community spirit. This space is from the community, for the community - with clear values. https://opensecurityconference.org/about/values/
So, what's motivating you to register today? 
https://register.opensecurityconference.org/
#osco #osco25 #CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity #OpenSpace [lisi]
hey #programming, I just decided to summarize most of the security trainings and courses for devs.
Missed one of my past conference talks? Let’s fix that.
I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.
“Security Learns to Sprint” https://twp.ai/4ipgXU
Working on the next release of Bytes Revealer, the open source online hex editor. What features would you like? Speak up please! #RE #reversing #AppSec #CyberSecurity give it a try!!
Exciting news! 
I’ve published my slides for “Security Champions Worst Practices” from my talk at #OWASP Global #AppSec in Barcelona! You can grab the PDF, watch a recording, and see fun photos on my blog. #owaspglobalappsec #securitychampions
All of the ZAP Docker images in the Software Security Project Docker Hub org have now been deleted.
If you were pulling from this org then please switch to the zaproxy org or use GHCR as per https://www.zaproxy.org/download/#docker
#zaproxy #appsec
We proudly present our keynote speakers for the Open Security Conference 2025! 
Mireia Cano: "Building an AppSec Program from Scratch"
@bkastl: "History repeating itself" Keynote details: https://opensecurityconference.org/conference/keynotes
We can't wait to learn from these awesome security professionals - we'll be in for a treat. 
Come join us and register for the Open Security Conference today: https://register.opensecurityconference.org/
#osco #osco25 #CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity #OpenSpace [lisi]
Calling all #AppSec folks in #London!
We are hosting a rooftop screening of Star Wars: The Force Awakens on Saturday, August 30! We've got everything from lightsabers, snacks, refreshments and a chance to snap a photo with Darth Vader.
RSVP here: https://shorturl.at/Ewzed
If you are developing a #WebApp try to enable #CSP heders directly from the start. It is much easier to validate correct function everytime a feature is added and not at a later point if the app still works correclty.
That said: #angular made it easier to add CSP headers with a nonce https://angular.dev/best-practices/security#content-security-policy
I trust you with searching on how to configure your webserver and check CSPs with tools ;)
I found this refrence rather helpful: https://content-security-policy.com/
Sponsors wanted! 
We're looking for further supporters to make the Open Security Conference 2025 as accessible as possible for everyone.
Everyone? Yes, we're splitting all expenses equally with everyone including organizers. The more sponsoring we get, the lower the price tag for everyone.
Check out our sponsoring packages: https://opensecurityconference.org/support/sponsorship/ Any questions, just reach out to us, we're happy to connect.
We appreciate you all for spreading the word! 
#osco #osco25 #CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity #OpenSpace [lisi]
Missed one of my past conference talks? Let’s fix that.
I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.
“DevSecOps with OWASP DevSlop” https://twp.ai/4ipX6g
WHY2025 
