OWASP® Foundation

Yes! It’s time to party!! It was an honor to participate at the OWASP® Foundation Virtual Conference commemorating the 25th anniversary. Here is the video from my presentation: https://lnkd.in/e9MN4X29 I am so grateful to have shared such a wonderful stage with such an outstanding group of speakers, including Daniel Cuthbert , Max Alejandro G. , Tanya Janca , Harshad Sadashiv Kadam , Audrey Long , Svitlana Samko , Marais van Zyl, Vikramaditya Narayan , Tomiwa Falade , Betta Lyon Delsordo , Rita Katzir , Leela Kanti, CISSP, CISM, CISA , Ramya Ganesh and many others. A special thank you to everyone who made this event possible, including Marisa Fagan , Josh Grossman , Lauren Thomas , Starr Brown , OWASP® Foundation, among others. The OWASP Foundation is celebrating 25 incredible years of open source security. That’s why OWASP Cornucopia is launching its 25th anniversary edition. Again!! You may ask, but this time we have accumulated 25 years knowledge and wisdom distilled onto 158 playing cards. Using these cards, you will be able to do threat modeling of agentic AI, cloud, DevOps, frontend, LLM, automation, and web applications, all at the same time! We want to thank everyone who made this possible. Especially, we want to thank Adrian Sroka, for bringing us the Agentic AI, Cloud, and Frontend suits for the new game and creating online pages and mapping his threats to OWASP AISVS, AITG, Top 10 Agentic Apps, and Top 10 for LLM, Mitre Atlas, and STRIDE. Mateusz Hubala, for bringing us the DevOps suit for the game and creating online pages and mapping his threats to OWASP SAMM and DSOMM, CAPEC, and STRIDE. Moritz Krause & Torben Neumann, for bringing us the LLM suit for the game and mapping their threats to OWASP AISVS, AITG, Top 10 for LLM, Mitre Atlas, CWE, and STRIDE. Colin Watson for bringing us the Automated Threats suits and mapping his threats to OWASP Automated Threats to Web Applications. We also want to especially thank Ayman Algamal, Adarsh Kumar, Abhijit Sahoo and Mradul Tiwari for helping develop the game, now available at copi.owasp.org, and for creating the help pages at cornucopia.owasp.org. And we want to thank all project leaders and contributors to the OWASP projects that have provided valuable input and guidance on the OWASP10 (OWASP Top 10), OWASP GenAI Security Project, OWASP ASVS, OWASP AISVS, OWASP SAMM In addition, we want to thank Anand kushwaha & Mahaboobunnisa Md for helping with the release of v3.0.0 and CyberSec Games for all the help and support with the printing and distribution of the 25th anniversary edition. #OWASP25thAnniversary #OWASP #AppSec #security #threatmodeling #games #agile #lean #llm #agentic #devops #cloud #fromtend

Join OWASP Global AppSec EU 2026 in Vienna, June 22–26, for hands-on training, epic talks, and networking with the best community vibes! Secure your spot 👉 https://lnkd.in/eqXgj2Xt #OWASP #CyberSecurity #InfoSec #FridayFeeling

OWASP Coraza and Modsecurity SecLang cheatsheet #coraza #owasp #waf #modsecurity

Opengrep’s first year is a reminder that security tooling works best when it stays open and composable. Our friends at Aikido Security's latest blog highlights all that has been achieved over the past 12 months and what's to come! 🔮 https://lnkd.in/eQB476Zm

We are excited to join InfoSecMap at HackMiami 2026 this weekend! We have some fun activities planned for our booth, so be sure to stop by and say hello 👋 See 👇 for more info

Later today, as part of the SAMM community call, we will cover: • project updates • outcomes of the core team summit • and a sneak preview of the 🆕 SAMM website • open Q&A Who's joining? https://lnkd.in/eKnS7iUE

We’re excited to announce OWASP® Foundation is partnering with CISO UK 2026 Over the past two decades, OWASP has become one of the most influential forces in application security, building a truly global, open community dedicated to improving the security of software. From widely adopted frameworks like the OWASP Top 10 to hundreds of open-source projects, tools, and resources, their work has helped shape how organisations identify, understand, and manage application risk. With a network of chapters and contributors around the world, OWASP continues to play a critical role in advancing secure development practices and supporting collaboration across the security community. Learn more about their work and community here 👉 https://hubs.ly/Q04fNKGQ0 We’re excited to bring that perspective into CISO UK 2026, taking place on 1 July in London, where senior cybersecurity leaders will come together to share practical insights on today’s most pressing challenges. 👉 https://hubs.ly/Q04fMzk40 #CISOUK

🚨Join us at the OWASP GenAI Security Project Half-Day Summit at Infosec Europe 2026 on Thursday, June 4, in London.🚨 This summit brings together security leaders, researchers, and enterprise practitioners to discuss the latest developments in GenAI and agentic AI security — including emerging threats, governance, incident response, real-world implementation lessons, and the evolving OWASP guidance shaping the industry. Sample sessions include: • The State of GenAI: Key Trends and OWASP GenAI Security Project • Beyond the Top 10: The Next Chapter of the Agentic Security Initiative • Agentic Security at Microsoft: Strategy, Implementation, and Lessons Learned • Implementing the Agentic Top 10 at AWS • 22 Seconds to Contain: Rewriting IR for Agents • Top 10 for LLMs Update • No Room for Hype: Securing Agentic AI Inside a UK Bank Featured speakers and contributors include OWASP GenAI Security initiative leaders and experts from Microsoft, AWS, Lloyds Banking Group, OWASP, Deep Cyber, Zenity, and more. A full agenda is available on the Infosec website. 🎟 Register now and use promo code OWASP for a free pass: https://lnkd.in/gTcEd4kp For additional summit details and updates: https://lnkd.in/gSrXPJ6j Stay tuned for networking party details coming soon. #OWASP #GenAI #AIsecurity #CyberSecurity #AgenticAI #LLM #Infosec2026 #AIGovernance #CloudSecurity #GenAISecurityProject

We’re excited to welcome Petra Vukmirovic as a Keynote Speaker at OWASP AppSec Days Portugal 2026 🇵🇹 Petra brings a truly unique perspective to cybersecurity — from emergency medicine doctor and competitive athlete to security leader, inventor, and globally recognised voice in threat modelling and AI security. Her journey spans leadership roles across engineering, compliance, healthcare, and product security, including building and leading global security teams, contributing to OWASP and CycloneDX initiatives, and co-chairing Linux Foundation AI threat modelling workgroups. Today, as Head of Information Security at Numan, Petra combines her healthcare and cybersecurity expertise to drive human-centric security strategies that protect patient data and create real business impact. What makes this especially exciting is Petra’s ability to connect security strategy, threat modelling, AI, and real-world business challenges into practical and actionable insights for modern security teams. 👉 Full bio: https://lnkd.in/efe-uJM4 📍 Porto, Portugal 🗓 September 23–24, 2026 #OWASP #AppSec #AppSecDaysPT #ThreatModelling #CyberSecurity #AI #ApplicationSecurity #Portugal

Great to see Sam Stepanyan live on stage at TryHackMe's AI Odyssey CTF today! Join the livestream now to watch the talks, panel discussion, and live AI security challenge as they happen. Watch here 👉 https://lnkd.in/eeGP-aDC