OWASP® Foundation

🚨We are still looking for a few great volunteers to assist us at the Global AppSec EU Conference next month!  If you are looking for ways to get involved and earn a free conference ticket 🎟️, sign up today! https://lnkd.in/eprc7zfs #OWASP #AppSec #Cybersecurity #DevSecOps #25Years

🚨Don't miss your chance! The Global #AppSec USA Call for Presentations is open until June 29th! 🎤🔥 Got insights, ideas, or real-world stories to share? This is your chance to take the stage in San Francisco and inspire the global AppSec community. 👉 Submit your talk now: https://lnkd.in/esCkqz2U #Cybersecurity #DevSecOps #Infosec #opensource #conference

ZAP now has a dedicated PTK active scan rule, so you can run the PTK rules in the ZAP active scanner.  Check out the dramatic improvement in the scores vs Google Firing Range! https://lnkd.in/ebCMUud5 #zaproxy #owaspptk #appsec

Did you know OWASP members get exclusive access to a reserved instance of @SecureFlag’s Secure-by-Design Enablement Platform? From secure design to secure code, the platform is built to help you ship safer features, faster. SecureFlag delivers:  📚 Secure Coding Training: Learn by doing with hands-on labs that mirror real projects, in live development environments. 🤖  AI-Powered Threat Modeling: Visualize and identify risks in seconds with ThreatCanvas.  📈 Measurable Impact: Spend 24% less time performing frustrating security reworks. Join engineers across 30+ countries who are building a secure-by-design culture. Claim your exclusive member benefit to the SecureFlag platform here:  https://lnkd.in/exZc84xE Not an OWASP member? Join the community today! https://lnkd.in/evGuHnfc #OWASP #SecureFlag #SecureCodingTraining #ThreatModeling #SoftwareEngineering

Calling all book lovers! 📚✨ Our very own bookstore is coming to Vienna, thanks to CyberSec Games, and that's not all; some of our most popular authors will be joining us for book signings throughout the conference. 🎥 Izar Tarandach is here to tell you more! Take a look at the signing schedule and make sure you don't miss the opportunity to meet your favorite authors and pick up a personally signed copy of their books! https://lnkd.in/emvEcFDa #OWASPVienna26 #globalappsec #booksigning #opensource #conference

𝗢𝗪𝗔𝗦𝗣 𝗣𝗧𝗞 𝟵.𝟵.𝟳 extension and NPM package released. The 𝗭𝗔𝗣 𝗶𝗻𝘁𝗲𝗴𝗿𝗮𝘁𝗶𝗼𝗻 has been a great push forward for PTK. It extended our DAST capability with new rule-driven workflows, improved IAST and SAST coordination, and moved automation to another level. This release focuses on three things: 𝗠𝗼𝗿𝗲 𝗿𝗲𝗹𝗶𝗮𝗯𝗹𝗲 𝗭𝗔𝗣 𝗮𝘂𝘁𝗼𝗺𝗮𝘁𝗶𝗼𝗻 PTK now has a clearer controller-driven lifecycle for ZAP active scan rules and legacy spiderClient workflows, better browser close/readiness handling, and stronger multi-browser DAST/IAST/SAST participation evidence. 𝗥𝗲𝗱𝘂𝗰𝗲𝗱 𝗽𝗲𝗿𝗺𝗶𝘀𝘀𝗶𝗼𝗻𝘀 𝗮𝗻𝗱 𝘀𝘁𝗿𝗼𝗻𝗴𝗲𝗿 𝗽𝗿𝗶𝘃𝗮𝗰𝘆 We removed the browser 𝙝𝙞𝙨𝙩𝙤𝙧𝙮 permission from Chromium and Firefox builds. 𝗕𝗲𝘁𝘁𝗲𝗿 𝗦𝗣𝗔 𝗮𝗻𝗱 𝗻𝗽𝗺/𝗦𝗗𝗞 𝗿𝗲𝗹𝗶𝗮𝗯𝗶𝗹𝗶𝘁𝘆 SPA route tracking is now more reliable; PTK Agent/npm activation, drain/export finalization, and installed-package validation were also hardened. We also added a structured OWASP PTK Pentester Guide covering installation, recon, active scanning, DAST, IAST, SAST, SCA, Proxy, Request Builder, JWT attacks, reporting, automation, ZAP integration, and troubleshooting. See: https://lnkd.in/e9Xx2haE #OWASP #PTK #zaproxy #AppSec #DAST #IAST #SAST #WebSecurity #CyberSecurity #DevSecOps

AI Exchange breaks AI security down to its essentials.

Would you like to try out the 25th Anniversary Edition of OWASP Cornucopia? If you do, you may have a chance at winning one. If so, you should get tickets to OWASP Global AppSec 2026 in Vienna: https://lnkd.in/eTvHwDXH and join Grant O. for "Games as tools for scaling your application security program" (https://lnkd.in/eZ8uAkwi). The new OWASP Cornucopia 25th anniversary edition contains both OWASP Cornucopia Companion and Website App Edition. The new edition comes with 6 companion suits covering new topics: Agentic AI (AAI), Automated Threats (BOT), Cloud (CLD), Frontend (FRE), Large Language Models (LLM), and DevOps (DVO). Read: https://lnkd.in/eYuNnUTi Play at copi.owasp.org Buy at CyberSec Games: https://lnkd.in/ewKYyvSY Download: https://lnkd.in/e2GTpcDe #appsec #security #threatmodeling #owasp #games #cornucopia

🥳 Congratulations Göktuğ Önyer, you’re the lucky winner of the ticket raffle for the OWASP® Foundation Global AppSec conference in Vienna! 🎟️ Alternate winners, in case the primary winner cannot attend: Prof. Mehmet Yilmaz, Anastasia Pustozerova, @kingthorin_rm (X/Twitter), @andifalk (X/Twitter), and Carl Sampson. All winners must get in touch in the next 72 hr using our contact form to claim your spot! ➡️ https://lnkd.in/gthVrCxS Stay tuned for the next giveaway! 🚀 #Giveaway #Raffle #InfoSec #CyberSecurity #OWASP #Austria #Vienna