OWASP DevSlop

OWASP DevSlop

Latest Videos

Empathy-led Product Security with Christian Frichot
Empathy-led Product Security with Christian Frichot
Growing pains How security changes as your startup develops
Growing pains How security changes as your startup develops
Guardrails who what why when
Guardrails who what why when
Hacking Mobile Games with Alex Rosenzweig
Hacking Mobile Games with Alex Rosenzweig
Hacking with Documentation with Heidi Waterhouse
Hacking with Documentation with Heidi Waterhouse
Yellow Team + Blue Team = Green Team
Yellow Team + Blue Team = Green Team
Top 10 CICD Security Risks
Top 10 CICD Security Risks
Demystifying the SBOM’s impact on Secure Software Deployment
Demystifying the SBOM’s impact on Secure Software Deployment
Project “Make ISO Happen 2022” - The Octopus Deploy Adventure Towards 27001 Certification
Project “Make ISO Happen 2022” - The Octopus Deploy Adventure Towards 27001 Certification
Learning from AWS Customer Security Breaches with Rami McCarthy
Learning from AWS Customer Security Breaches with Rami McCarthy
Privilege Escalation in the Cloud with Carlos Polop
Privilege Escalation in the Cloud with Carlos Polop
Diving Deeper into Subdomain Takeovers & Mitigations with Shubham Shah
Diving Deeper into Subdomain Takeovers & Mitigations with Shubham Shah
Finding bugs with Nuclei with PinkDraconian Robbe Van Roey
Finding bugs with Nuclei with PinkDraconian Robbe Van Roey
Github Actions Security Best Practices with Reethi Kotti
Github Actions Security Best Practices with Reethi Kotti
Dont Get Got How to Avoid a Privacy Disaster with Samantha Floreani
Dont Get Got How to Avoid a Privacy Disaster with Samantha Floreani
Software Security Education with the OWASP Secure Coding Dojo
Software Security Education with the OWASP Secure Coding Dojo
Building Modern Access-Control for Cloud Applications
Building Modern Access-Control for Cloud Applications
Account Security beyond 2FA with Neil Matatall
Account Security beyond 2FA with Neil Matatall
Let’s Write Security Unit Tests with Eric Johnson
Let’s Write Security Unit Tests with Eric Johnson
Attacking JSON Web Tokens with Louis Nyffenegger
Attacking JSON Web Tokens with Louis Nyffenegger
Secure Your Code With GitHub Code Scanning
Secure Your Code With GitHub Code Scanning
OAuth 2.0 Hacking for Beginners with Farah Hawa
OAuth 2.0 Hacking for Beginners with Farah Hawa
Fixing OSS Security Vulnerabilities at Scale
Fixing OSS Security Vulnerabilities at Scale
Threats Against Application Identities in the Microsoft Cloud
Threats Against Application Identities in the Microsoft Cloud
Security in Kubernetes - How to do it right
Security in Kubernetes - How to do it right
Testing Your Assumptions with Red Teaming
Testing Your Assumptions with Red Teaming
OAuth and OpenID Connect Clearly Explained
OAuth and OpenID Connect Clearly Explained
Containers in a nutshell — ähm pod Containers in a pod
Containers in a nutshell — ähm pod Containers in a pod
Cloud Security Tooling for the Sole Practitioner
Cloud Security Tooling for the Sole Practitioner
Demystifying Mobile Security With a COVID App
Demystifying Mobile Security With a COVID App
How to Analyze Code for Vulnerabilities using Joern
How to Analyze Code for Vulnerabilities using Joern
Vulnerability Writeups The Magical 5 Minute Formula
Vulnerability Writeups The Magical 5 Minute Formula
DevSecOps wins with Security Unit Tests
DevSecOps wins with Security Unit Tests
Software Security at Rocketship Pace with Alex Rosenzweig
Software Security at Rocketship Pace with Alex Rosenzweig
Fuzzing DevOps and You Getting to Know Fuzzing
Fuzzing DevOps and You Getting to Know Fuzzing
How to do Code Review - The Offensive Security Way
How to do Code Review - The Offensive Security Way
Handling software architecture shifts with Victoriya Kalmanovich
Handling software architecture shifts with Victoriya Kalmanovich
The Dark Side of DevSecOps with Yasmin Taylor
The Dark Side of DevSecOps with Yasmin Taylor
YOUR Career in AppSec with Tanya Janca
YOUR Career in AppSec with Tanya Janca
Occupy Babel Langsec Explained in a Few Slogans
Occupy Babel Langsec Explained in a Few Slogans
How to Analyze Code for Vulnerabilities
How to Analyze Code for Vulnerabilities
Codify Workflows for Security and Speed
Codify Workflows for Security and Speed
Workshop Exploring Policy as Code for Cloud Infrastructure
Workshop Exploring Policy as Code for Cloud Infrastructure
How to Implement an Effective Cloud Resource Tagging Strategy Using IaC
How to Implement an Effective Cloud Resource Tagging Strategy Using IaC
Hunting for IDORs with Katie Paxton-Fear
Hunting for IDORs with Katie Paxton-Fear
Workshop Scaling your AppSec Program with Semgrep
Workshop Scaling your AppSec Program with Semgrep
Javascript Security with Sherif Koussa
Javascript Security with Sherif Koussa
Shifting Cloud Security Left Scanning Infrastructure as Code for Security Issues
Shifting Cloud Security Left Scanning Infrastructure as Code for Security Issues
Cloud Security and IAM for Developers
Cloud Security and IAM for Developers
Secrets Management A Developers View with Rob Barnes
Secrets Management A Developers View with Rob Barnes