Hello #Ottawa, after organizing the #BsidesOttawa
#OWASP track and our end of year social we are going to take break to recharge for 2023.

Stay tuned for announcements on our first in-person, hybrid, live streamed, soya, free-range meetup in 2023.

Thanks to the tenacity of @SheHacksPurple the #OWASP track slides from #BsidesOttawa
2022 are now (mostly) available at github.com/OWASP-Ottawa/BSidesOttawa

@wehackpurple

#OWASP #Ottawa #AppSec #BSidesOttawa

Thanks to the tenacity of @SheHacksPurple the #OWASP track slides from #BsidesOttawa
2022 are now (mostly) available at github.com/OWASP-Ottawa/BSides….

@wehackpurple

#OWASP #Ottawa #AppSec #BSidesOttawa

Thanks to the tenacity of @SheHacksPurple the #OWASP track slides from #BsidesOttawa
2022 are now (mostly) available at https://github.com/OWASP-Ottawa/BSidesOttawa/tree/main/2022/Slides.

#OWASP #Ottawa #AppSec #BSidesOttawa

Another #BSidesOttawa has been completed. We have had the best turnout yet for the #OWASP track. #OWASP #Ottawa would like to thank the speakers, volunteers, and attendees who made this (our first return to in-person events since Covid) special.

The last two days at #BSidesOttawa were a lot of fun.

Thank you to the organizers. speakers, sponsors and volunteers for a great event. Nice to see some familiar faces after a few years off.

In particular thank you to @OWASP_Ottawa for their dedicated track.

See you next year!

#appsec #infosec #owasp #conference

Definitely missed two talks I wanted to hear at #BSidesOttawa because I got super deep into trying to pick locks. Great fun!

Definitely missed two talks I wanted to hear at #BSidesOttawa because I got super deep into trying to pick locks. Great fun!

Magno Logan shares how #OWASP helped his security career.
#BsidesOttawa #ottawa #appsec

Level 0 to start reverse engineering code? Learn to code and learn compilers. #BsidesOttawa #owasp #ottawa

I love the name of this next talk:

All Software is Open Source: An Introduction to Reverse Engineering

#BSidesOttawa

Time to kill before the next talk. Time to learn to hack IoT devices!

#bsidesottawa #infosec #iot

Karim Sultan is talking about blockchain and DeFi attacks.
#Ottawa #Owasp #BSidesOttawa

The OWASP Application Security Verification Standard (ASVS) Project provides a basis for testing web application technical security controls and also provides developers with a list of requirements for secure development.

https://owasp.org/www-project-application-security-verification-standard/

#OWASP #appsec #BSidesOttawa

The Zed Attack Proxy (ZAP) is a free web application security testing tool from #OWASP.

https://www.zaproxy.org/getting-started/

It can be used for both manual and automated testing.

#appsec #BSidesOttawa

Next up: Top Ten Security Tips for APIs with @SheHacksPurple at #BSidesOttawa.

“APIs still need just as much security attention as applications; not having a front end does not make then visible to attackers”.

#appsec

The Synopsys Open Source Security and Risk Analysis Report 2022 Report found that of the 2409 codebases reviewed 97% used open source dependencies. And that 78% of the code in these projects were open source code.

And yet, we focus code review efforts on the ~20% of code that’s “custom”.

#BSidesOttawa #appsec #foss

Report (PDF): https://www.synopsys.com/content/dam/synopsys/sig-assets/reports/rep-ossra-2022.pdf

The SSI journey begins.
#owasp #ottawa @BsidesOttawa #bsidesottawa #identity #SelfSovereignIdentity

Kicking off my second day at #BSidesOttawa with “Securing Open Source Dependencies” with Rana Khalil.

Now @LucyYQX is speaking at the @OWASP_Ottawa stage at #BsidesOttawa about Self Sovereign Identity!