Welcome to OWASP AppSec 2018 USA we look forward to seeing you in San Jose, CA

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Belvedere [clear filter]
Monday, October 8


2-day training: Webservice and Web Application Secure Coding with the OWASP Top 10 and the OWASP ASVS
This 2-day class is an introduction to secure coding and application security for webservice and web application professionals. Any web developer, architect, security professional or other software development professional who needs to build and maintain secure webservice and web application software will benefit.The class begins with a hands-on CTF and series of hacking demonstrations to illustrate how webservices and web applications are attacked. The class will then continue with a combination of lecture, discussion, code review and group labs covering the following topics.

avatar for Jim Manico

Jim Manico

Founder, Manicode Security
Jim Manico is the founder of Manicode Security where he trains software developers on secure coding and security engineering. He is also an investor/advisor for KSOC, Nucleus Security, Signal Sciences andBitDiscovery. Jim is a frequent speaker on secure software practices, is a member... Read More →

Monday October 8, 2018 9:00am - Tuesday October 9, 2018 5:00pm
Wednesday, October 10


Women In AppSec - Hands-On Penetration Testing Training - 1 day Training
Limited Capacity full

Interested in getting in on the insight and action of application security?
Join us for a free workshop constructed to satisfy your curiosity and professional development, given the modern Internet and its various associate risks.  
Why a free workshop?
The OWASP volunteer community and our Women in AppSec Committee (WIA) Committee commit to training the leaders behind securing the World Wide Web… That’s YOU! Your learning path starts (or continues) here. We’re excited to form mentorships at this year’s AppSec USA conference.
Breakdown of Topics:
This will be an interactive one day workshop on how to test applications for security issues. Participants of this course will learn how to do the following:
  1. Scope a security review and prioritise the work
  2. Understand the manual and automated tools and techniques available and when to apply them
  3. Learn how to determine the real risk value.
  4. In order to achieve these goals assess the OWASP Top Ten security areas within a real world application.


The workshop is intended for web application developers, students and application security testers
This is an introductory training for those new to application security. The course has been developed to train learners at all levels… Just remember to bring your enthusiasm!
1. Laptop with administrator access (mandatory)
2. Minimum 4 GB RAM
3. Atleast 10 GB of free hard disk space
4. Oracle VirtualBox 5.x or later installed.
5. Burp Suite Community Edition installed (https://portswigger.net/burp/communitydownload)

The course is taught by Vandana Verma, an experienced application security practitioner, and OWASP WIA Committee Secretary and Asia Volunteer Coordinator

avatar for Vandana Verma

Vandana Verma

Security Solutions Architect, WIA Asia Lead and Secretary, OWASP Bangalore Chapter Leader, IBM
Vandana Verma is an experienced application security practitioner, OWASP Bangalore Chapter Leader, OWASP WIA Lead, WoSec, InfoSecgirls and Women in Cyber Security Advocate. She has given talks and workshops at many colleges and security conferences including AppSec Europe, AppSec... Read More →

Wednesday October 10, 2018 9:00am - 5:00pm