OWASP Community Meetings

Description: Join us for Bay Area OWASP's upcoming event, Great talks, delicious food Courtesy our sponsors **Kodem Security.** Get ready for insightful discussions and the chance to network with some of the brightest minds in the industry. **This meetup is jointly hosted with Pacific Hackers Group and and Cloud Thirsty Thursday.** **Agenda:** 5:30 - 6:00: Doors open, networking and food 6:00 - 6:45: Adversarial Intelligence: Redefining Application Security Through the Eyes of an Attacker 6:45 - 7:30: **TBD** **Talk#1** Abstract: This presentation explores Adversarial Intelligence - an approach that views application security from an attacker’s perspective. Drawing from vulnerability research experience at the NSO Group, the speaker will highlight how overlooked low and medium vulnerabilities can be combined to execute successful attacks. By examining attack chains and application runtime behavior, attendees will see how gaps often missed by traditional methods are exposed. Attendees will learn about effective tools and techniques for detecting and mitigating these threats, especially in cloud-native and distributed systems. Designed for security practitioners and academics, this session provides a deeper understanding of defending against sophisticated attackers by adopting their mindset. Speaker :- **Roy Talyosef** is a founding engineer at Kodem. Prior to Kodem, he was on the Vulnerability Research team at NSO Group and worked on the team that built Pegasus.” Talk#2: TBD

Description: Ce meetup se deroulera chez **OCTO Technology** que nous remercions chaleureusement de leur soutien. OWASP Paris est le meetup dédié à la sécurité applicative. Pour rappel, le meetup se veut non commercial. Il réunit toutes personnes désireuses de concevoir et maintenir des logiciels plus sûrs. Si vous êtes intéressé par le sujet, que vous soyez débutant ou expert, n'hésitez pas à nous rejoindre pour partager vos expériences ou vos problématiques. Ce meetup propose des sessions organisées en mode "forum ouvert". Les sujets sont proposés par les participants lors de la séance. Partages de connaissances, retour d'expériences, exercices de type CTF, bonnes pratiques, gouvernance et organisation, ... sont au programme! **Lightning Talks:** La soirée commence par de courtes présentations. Chacun peut s'il le veut proposer une présentation, ce n'est pas obligatoire. Si vous avez envie de partager une technique, une opinion, une démo ou un retour d'expérience, alors vous pouvez préparer un lightning talk, entre une simple phrase et 10 minutes maxi et venez le présenter au début de la soirée. Si vous n'avez jamais fait de présentation avant, c'est l'occasion de commencer dans une ambiance sympa. **Workshop:** La soirée se poursuit avec des activités menées en groupes. Chacun peut s'il le veut proposer un sujet, ce n'est pas obligatoire. Vous avez 30 secondes au début de la session pour en donner envie aux autres participants, puis tout le monde vote pour son sujet favori. Les sujets préférés donnent lieu à des activités en groupes pendant un peu plus d'une heure. Des écrans seront disponibles Le format se veut bienveillant. Pas besoin d'être expert pour parler d'un sujet. Vous trouverez certainement d'autres personnes pour vous aider! L'accent est mis sur l'échange et le partage. L'agenda et le compte-rendu des précédents meetups est accessible ici: https://owasp.org/www-chapter-france/

Description: **The new age of Product Security** **Dimitry Shvartsman, Chief Product Officer, PrimeSec** In today’s fast-paced development landscape, the speed of code delivery has reached unprecedented levels, challenging traditional approaches to product security. Security professionals can no longer rely solely on vertical interventions or manual processes to safeguard products; the sheer volume and velocity of development demands our approach to change and adapt. This presentation explores the transformation that is required in product security, emphasizing the critical role of emerging tools like Large Language Models (LLMs) in enhancing our understanding of business context. By leveraging these advanced technologies, we can integrate security as early as the design stage of SDLC, enabling smarter, more preventative interventions. Join me to discover how security can become much more proactive by incorporating itself into the design stage and transforming how we approach product security. Approximate agenda (U.S. Central Time): 5:30 - Doors open; socializing/connecting, food, OWASP announcements 6:00 - Presentation PrimeSec is graciously providing food and drink for the event. Please remember to register and keep your registration up to date so we know how many to expect.

Description: Hello OC Cyber Folks! ***Ready for another round!!!??? Please join us for our Joint OC Cyber Mixer!!*** **When:** **Tuesday December 3rd, 2024** **Time:** **6 PM- 9PM** **Location:** **Hangar 24** 17877 Von Karman Ave Unit 110, Irvine, CA 92614 Come mix and mingle with your peers in a **SAFE** networking environment. You also do not need to drink to enjoy! So come join us and meet new folks!!! **Vendors** are welcome **BY INVITATION ONLY.** Please contact Jackie from Cloud Security Alliance (CSA) if you are an interested vendor, as *we only allow a few per event.* No selling allowed. Parking will be validated with proof of purchase. You may RSVP to any of the meetup groups -- we're all friends here! Here's the CSA link: https://www.meetup.com/cloud-security-alliance-csa-orange-county/events/304591473/?eventOrigin=group_similar_events

Description: **Reverse Engineering Basics** (75 min) We'll go over the basics of reverse engineering starting with what it is and why the activity is so important. We'll cover the reverse engineering mindset, executable formats, tools (we'll mostly use Ghirda [https://ghidra-sre.org/](https://ghidra-sre.org/), but touch on IDAPro, and ImHex) of the trade, we'll touch on reverse engineering techniques for embedded devices as well. Lastly we'll have an executable for everyone to reverse engineer. So bring your laptop with Ghirda installed (feel free to install the other two as well). **NOTE: We are starting at 7:30 pm beginning this month. Also, the date is Tues, December 3rd. The original email had the wrong date. Apologies!**

Description: Hi, This time we will focus on threat modeling - a proactive technique of risk analysis which could help to determine and fix potential vulnerabilities before they will even appear in the code, configuration or architecture. Nowadays "threat modeling" has become a trendy buzz word. During our meetup we will try to uncover it's real meaning and discuss how to practically implement threat modeling in software development lifecycle. Agenda: 1. **Threat modeling for application security – a case study** *Marta Rusek (Senior Cloud Security Engineer) & Wiktor Cudek (Principal Cloud Security Engineer) - Pegasystems.* Threat modeling is one of the parts of the SDLC process, that embed security throughout early stages of development. Thanks to that, we are able to detect potential problems at the beginning and avoid a lot of changes on the advanced maturity of the product. The goal of this presentation is to compare the most well-known Threat Modeling methodologies, their strong and weak sides. Based on our knowledge, we will compare these methods with the process and tools that are used in our company, and share our experience based on the work with development teams. 2. After the break, we will host a **discussion about threat modeling**. Share our experiences with TM. When it's applicable. How to start doing TM in your project? Which techniques and methodologies works and when? What should be our goals? Is it possible to simplify the threat modeling process? That's just example of questions that we want to ask. Please RSVP and save the date! If you have a minute, **please share this invitation** with friends and in your social media.

Description: In collaboration with Aurora and Szikra we revisit the topic of personal secops already approached a year ago, now on a bit more advanced level: Neked van egy telefonod — nekik van egy nyomkövetőjük. Neked van Spotify-od — nekik van egy emocionális profiljuk rólad. Neked van egy VPN-ed — nekik van egy logjuk. Használsz TOR-t — nekik lesz egy gyanújuk. Mi a kiút — Tibet. Addig is keressük meg az egészséges és élhető egyensúlyt a kiber-nihilizmus (balekság?) és a paranoid trip között. A személyes kiber-higiéniáról ezúttal Timur, az OWASP egyik itthoni vezetője osztja meg a szubjektív, de gyarkolatias nézeteit, és tekeri a javaslatokat civil szervezetek és aktivisták emelt szintű elvárásainak megfelelően. Telegram vagy Signal? Információ guberálóktól a targetált támadásokig. Lockdown mode iOS-ben? GrapheneOS vagy ChromeOS? Jelszavak és kulcsok. Fizetés mosollyal. Pillanatnyi aranyszabályok (mielőtt jönne a social scoring))). *"Az esemény 18:00-kor kezdődik az Auróra nagytermében, 17:45-től gyülekező. Az előadást követően közönségi kérdések útján folytatódik az esemény előreláthatólag 20:00-ig. Az eseményen a részvétel ingyenes és semmilyen szakmai előismeretet nem igényel. Hívd el barátaidat, ismerőseidet is!"* [https://www.facebook.com/events/1058720388887476](https://www.facebook.com/events/1058720388887476) Where: Aurora Community Center Budapest Auróra utca 11., 1084 [II. János Pál pápa tér metro] [https://maps.app.goo.gl/ZdgKWp7ajBNm8sTQ9](https://maps.app.goo.gl/ZdgKWp7ajBNm8sTQ9) Speaker: Timur Khrotko, OWASP Hungary *Timur hosszú utat tett meg a kiberbiztonságban a kedvtelő paranoiától az európai szakmai kiválósági díjjal kitüntetett bankibiztonsági startupon át a KPMG-s pentest projektvezetésig és végül egy biztonságos fejlesztést oktató butik vállalkozásig. PhD-jét a Corvinuson szerezte.* Produced by: András Hegedűs, Szikra Mozgalom Further readings: * [Surveillance Self-Defense by the Electronic Frontier Foundation](https://ssd.eff.org/) * [Extreme privacy: What it takes to disappear in America](https://www.amazon.com/Extreme-Privacy-Takes-Disappear-America/dp/1093757620) (na, erről nem lesz szó))

Description: OWASP IL is excited to announce our next Meetup! Join us for an evening filled with engaging discussions on application security, networking with the AppSec community, and of course, delicious food and drinks. We’re thrilled to have this event graciously hosted by JFrog at their amazing offices. Don’t miss this opportunity to connect, learn, and grow with fellow security enthusiasts! ==================================================================== **Agenda:** 18:00 - 18:20 - gathering and food - We will gather at JFrog's Offices for drinks, great treats, and mingling. 18:20 - 18:30 - Keynote + Microphone tuning 18:30 to 19:15 - **Hacking Like a Developer: Applying a Developer Mindset to Blackbox Penetration Tests** *Moti Harmats - Product Security Team Leader @ JFrog* In this session, we’ll explore how adopting a developer’s mindset can elevate your penetration testing techniques and uncover vulnerabilities more effectively. By leveraging tools like debuggers, developer tools, and runtime analysis, even without access to source code, you can gain deeper insights into application behavior. We’ll cover practical techniques for using these tools in blackbox environments, demonstrating how to trace application flows, identify critical breakpoints, and manipulate data to expose security flaws. Whether you’re a seasoned pentester or just getting started, this talk will equip you with actionable techniques to think like a developer, hack like a pro, and improve the value of your penetration tests. Small Break - 19:15 - 19:20 19:20 - 20:05 - **Secure Your Gen Code** *Or Sahar -CoFounder @ Secure From Scratch* GenAI tools have transformed the way developers write code, but in many cases, this code does not adhere to secure coding practices. In this talk, we’ll carefully examine how GenAI generates vulnerable code snippets and explore ways to generate secure ones. This talk is designed for developers and team leads looking to leverage GenAI responsibly while ensuring code quality and security. Small Break - 20:05 - 20:15 20:15 - 21:00 - **DOM Jungle - Can We Trust The UI?** *Gal Weizman - Security Engineer @ MetaMask* One thing's for sure—we can no longer fully trust all code running under the same origin as our app. This is due to today's development landscape, where web apps are mostly composed of third-party code that the app builders do not control. Considering this, we can no longer trustfully perform many operations we are used to blindly trusting. A significant one is DOM interaction—if some code I don't trust can run in my app, how can I rest assured it doesn't manipulate the DOM and the content accessible to the user? If I present sensitive content to the user, can an attacker just steal it? What stops an attacker from changing my website's layout to phish the user? The way the Web is designed, any JavaScript code running within a certain origin has full access to its document. Due to how the DOM's API is designed, regulating restrictions on it is a hard problem to solve—many have tried (and still are). In this talk, after making sure it's clear why DOM API is so complicated to confine, we'll discuss why we should worry about this problem, what we can do about it, and, most importantly, what projects/initiatives/proposals are already being worked on. ==================================================================== This event is hosted by JFrog in collaboration with OWASP Israel. Join us at the event physically as we will not include Zoom or remote participation this time.

Description: Come and join us at our first OWASP Warwick CTF. This is a ticketed event. Only those with a ticket will be able to participate. We are looking for both students and industry to take part. Pre registration https://web.cmdnctrlsecurity.com/registration-owasp

Description: Hey all, Just a heads up to get this in your calendar - we've got our next meetup coming up! Date: Thursday 5th December 2024 ⏰ Time: 6:00 PM onwards Location: Hays Office, Central Birmingham As usual, we'll have: * Two exciting cybersecurity talks * Food and refreshments provided * A chance to talk and connect with folks from across the cyber sector in the Midlands All are welcome - from students to veterans and everyone in between! Full agenda and speaker details will follow closer to the date. *\*\*\*First Talk Announcement\*\*\** **Speaker:** David Archer (Solution Architect at Endor Labs) **Title:** Ship Happens: The Stormy Seas of Supply Chain Security **Synopsis:** Modern software development is a sprawling network of open-source dependencies, sophisticated build tools, plugins, pipelines, repositories and runtimes. This “supply chain” is under relentless attack and many of the potential threats are poorly understood by our development and security teams. We’ll take a warts-and-all look at how software is produced, re-used and “secured”. We'll explore strategies to mitigate some of the threats that exist and share practical takeaways that you can immediately implement in their software development practices. Expect to leave with a feeling of dread(!), but also hopefully a deeper understanding of supply chain security and where you should pay closer attention to your software factory. *\*\*\*Second Talk Announcement\*\*\** **Speaker:** James Holland (Technology Innovation at Palo Alto Networks) **Title:** How to secure the Black Hat infrastructure **Synopsis:** There's a good reason that the organisers of the Black Hat conferences don't use the hots venue's own infrastructure. In fact there are many: ethical hackers learning and testing their skills, not-so-ethical hackers looking for targets, researchers demonstrating new offensive techniques, plus a lot of legal implications too. We'll go behind the scenes at the network and security operations centres for the Black Hat conferences worldwide, to share more details, stories and plain-text credentials. Looking forward to seeing you there! Best regards, Jim + Nathe OWASP Birmingham Chapter Leaders

Description: Join us in celebrating yet another end to an amazing year. No presentations, just a catch up with all you hackers, security experts and enthusiasts alike. Tell us about sweet hacks you’ve done or things you’ve heard about. Hope to see you there!

Description: **Title** Online Secure Coding Tournament with Security Journey **Location** Virtual - Register at [https://info.securityjourney.com/owasp-indianapolis-ctf](https://info.securityjourney.com/owasp-indianapolis-ctf). You will be emailed login information before the tournament starts. There will be a Zoom call during the event - [https://us02web.zoom.us/j/87163909513?pwd=L3pCVSWXDuEreLZwS8o8wHr0c5INPh.1&from=addon](https://us02web.zoom.us/j/87163909513?pwd=L3pCVSWXDuEreLZwS8o8wHr0c5INPh.1&from=addon) **Details** * **Prizes** \- Security Journey will provide $100\, $50\, & $25 for first\, second\, and third place\. The tournament will be running for 48 hours\, but the prizes will be awarded to the leaders at 8PM on the day of the meetup\. * **Languages -** The supported languages in the tournament are C#, Java, JavaScript, Ruby, and Python

Description: This is an In-Person OWASP Orlando Chapter Meeting Food to be provided (Typically pizza or sandwiches) Introductions More details to be provided soon! Speaker 1: **Tony Turner** Topic: Five Elements of Trust - Tony will present on 5 elements of trustworthy software, useful in establishing software and technology assurance in your supply chains. Speaker 2: **TBD** Topic: TBD

Description: | You are invited to the following [event](https://urldefense.com/v3/__https:/alamoisc2.org/EmailTracker/LinkTracker.ashx?linkAndRecipientCode=KhkvpPlIN8oSQkXcsJiS4eCQW6U2iYiXSaQ8m6aQg0M9dNQjpyHuPOlsKhYhO3Q72jNYoxXc6otLmSrxwh0IdLk68a0995kfT5GR5MGmwso*3d__;JQ!!CiF3mHgEawk!D94IdLBNnUQ_CPByyZ6kbQiffqdXRrSUOT9mmGVd3rZprd3N1j_jmuozjcZSM3Ww7yQuCwAb9XjpQYlIcYz_ew$): Joint Jingle Mingle Event When: December 05, 2024 4:30 PM, CST Where: Scuzzi's Italian Restaurant - 4035 N. Loop 1604 W., San Antonio, TX 78257 **Will you be attending?** **EVENT DETAILS:**  Please register so we can get a head count. | | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | |

Description: **OWASP Meeting 2024** OWASP Lima Chapter Meeting (VIA ZOOM) **PRESENTACIÓN:** **OWASP Projects: A Path to a Secure SDLC** Explora los principales proyectos de OWASP y cómo integrarlos en cada etapa del Ciclo de Vida de Desarrollo de Software (SDLC) para garantizar la seguridad desde el diseño hasta la implementación. Conoce herramientas y estándares como OWASP Top 10, ASVS y ZAP, y su impacto en la construcción de software seguro y eficiente. Una oportunidad para profundizar en las mejores prácticas respaldadas por la comunidad global de OWASP.

Description: Join us for an exciting evening of cybersecurity challenges at the IT-University of Copenhagen on December 10th, starting at 17.00! Get ready to embark on a thrilling adventure as we host a Viking-themed Capture The Flag (CTF) tournament, sponsored by Secure Code Warrior. Gather your crew, test your skills, and compete for prizes while enjoying pizza and drinks provided by our generous sponsor. Whether you're a seasoned pro or new to the world of CTFs, this event promises to be a fun and engaging experience for all. Put your best Viking attire, form your teams, and prepare for battle! Don’t miss out on this opportunity to sharpen your skills, connect with fellow enthusiasts, and have a great time! P.S. In order to participate you need a laptop with a browser. So please bring that if you want to play along.

Description: **Exploiting deserialization vulnerabilities in recent Java versions** Due to attack techniques such as Insecure Deserialization and JNDI Injection, Java applications were prime targets for attackers. However, recent changes in Java have rendered many known exploits and attack patterns ineffective in newer versions. This talk will provide an overview of these changes and discuss which techniques are still viable. Additionally, we will discuss how to harden existing Java applications that run on current Java versions. **Agenda (Subject to Change):** * **6:00 PM**: Arrival * **6:30 PM - 7:30 PM**: Presentation * **7:30 PM - approximately 9:00 PM**: Barbecue, drinks, discussion, and networking

Description: **Let me invite you to our first in-person event of the year!** This is a great opportunity for knowledge sharing and networking. There is no strict agenda—this will be a more casual meeting where we can discuss interesting security-related topics and make plans for the chapter in 2025. Please bring your ideas, questions, and any topics you’d like to share. **Agenda:** * Open discussions on security (and other related) topics * Exchange of experiences, thoughts and ideas

Description: In der Fuggerstadt wird IT-SECURITY groß geschrieben. Egal ob IT-Security-Interessent\*in, CISO, Hacker/Haeckse, Pentester\*in, Entwickler\*in, Netzi, Endanwender\*in oder whatever - alle sind willkommen. Eine OWASP-Mitgliedschaft ist (natürlich wünschenswert, aber) nicht notwendig! **Wir freuen uns auf neue Gesichter, Stammgäste und sporadische Teilnehmer\*innen :-)** **Agenda tbd** **-> WICHTIG: Dieses Mal *nicht* im Thing, sondern bei Meteocontrol!** Du hast einen Vortrag? Melde dich! Wir sind immer auf der Suche nach interessanten Inhalten!! **Bitte gebt Bescheid**, wenn ihr kommt und ggf. wie viele Leute ihr mitbringt, damit wir auch genug Platz haben. Du hast eine Idee oder willst einen Talk halten? Melde dich einfach! Wichtiges für Talks in aller Kürze: * Verwende einen neutralen Foliensatz - ohne Logo, ohne Werbung * Auf einer Folie kannst du dich und deinen Arbeitgeber vorstellen - hier auch mit Logo * Gib kurz Bescheid, ob du den Vortrag auch auf Englisch halten könntest * Vertriebler, die eine Verkaufsveranstaltung durchführen wollen, werden ausgebuht und müssen diverse Runden Bier ausgeben

Description: **Haley Kelly** is a dedicated cybersecurity professional who is passionate about sharing knowledge and inspiring others. After overcoming some challenges in the job market, she successfully landed an internship at GuidePoint Security. Through mentorship, networking, and continuous learning, Haley has gained valuable insights into the cybersecurity industry. In this talk, she will share practical tips and strategies that helped her break into the field, including the importance of building relationships, attending industry events, and staying current on the latest trends. Slack @ #chapter-seattle (https://bit.ly/owasp-seattle-slack) [email protected] (https://groups.google.com/a/owasp.org/g/seattle-chapter)

Description: /\*\* VIRTUAL \*\*/ **TOPIC**: AI and OWASP – a guide to Artificial Intelligence for security professionals Join us for our last meeting of 2024 for an amazing talk by **Rob van der Veer**\, founder of OWASP AI Exchange\, a pioneer and veteran in AI\, security\, and software engineering \| Senior principal expert at SIG\. **ABSTRACT**: OWASP is on the forefront of AI security, with the AI Exchange directly contributing to international standards and the LLM top 10 gaining broad adoption. Let’s go over these OWASP projects to see what they offer, and what is important for you as security professional when it comes to protecting and red teaming AI systems. **SPONSORSHIP Opportunities Available** *Vendors interested in sponsoring please send an email to [email protected]* **CODE OF CONDUCT** We hope you enjoy the event, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback/concerns or would like to speak to us, we take these matters very seriously. You can find out more about our policies here: [https://owasp.org/www-policy/operational/conferences-events.html#conference-and-event-anti-harassment-policy](https://owasp.org/www-policy/operational/conferences-events.html#conference-and-event-anti-harassment-policy) **SPONSORSHIP Opportunities Available** *Vendors interested in sponsoring please send an email to [email protected]*

Description: Invite only meal, please submit attendance though group comms channel

Description: ¡Para cerrar la actividad de OWASP UY del año traemos "**OWASP Río de la Plata**"! Es un evento imperdible para todos los amantes de la ciberseguridad y la seguridad en aplicaciones. Únete a nosotros el **Jueves 12 de diciembre** a las **09:00** en la Torre de las Comunicaciones - ANTEL para un día lleno de conferencias y networking. ¡No te pierdas esta oportunidad única de aprender de expertos en la industria y conectar con otros profesionales del sector! La entrada es **gratuita** con registro previo **en Eventbrite**: [https://www.eventbrite.es/e/owasp-rio-de-la-plata-montevideo-tickets-1063158538809](https://www.eventbrite.es/e/owasp-rio-de-la-plata-montevideo-tickets-1063158538809) Visita el sitio en los próximos días para conocer la agenda y la lista completa de oradores: [https://appsecriodelaplata.org/](https://appsecriodelaplata.org) ¡Te esperamos!

Description: We’re excited to invite you to our Winter 2024 in-person social gathering, a fantastic opportunity to connect with fellow cybersecurity enthusiasts! **Location:** Moxies **Date:** Thursday, December 12, 2024 ⏰ **Time:** 6:30 PM – 8:30 PM Whether you’re a seasoned professional or just starting your journey in hacking and cybersecurity, this event is perfect for anyone passionate about the field. Come share ideas, discuss trends, and network in a relaxed, friendly environment. No laptops needed! As this is a social and networking-focused event, just bring your curiosity and enthusiasm. Seats are limited, so be sure to click the RSVP button to secure your spot. We look forward to seeing you there!

Description: **Join us for the Edmonton OWASP Christmas Party at Beer Revolution!** Celebrate the holiday season with fellow cybersecurity enthusiasts as we socialize, enjoy great beer, and dive into fun and interactive cybersecurity board games. It's the perfect mix of networking, games, and festive cheer—don’t miss out! This casual event kicks off at 2 PM, but there’s no strict schedule. Drop by anytime in the afternoon or evening to join the fun. Whether you’re popping in for a quick drink, some socializing, or diving into a full game session, you’re welcome to come and go as you please. Relax, connect, and enjoy the festive vibes at your own pace! **Cybersecurity Games to Play:** 1. **Backdoors and Breaches** A strategic incident response game where players simulate cyberattacks and defenses using real-world TTPs. Can you outsmart the attackers or defenders? 2. **Hoxhunt Social Engineering Game** A *Cards Against Humanity*-style game with a cybersecurity twist! Craft hilarious and devious social engineering attacks for laughs and learning. 3. **SANS Pen Test Poster: Pivots & Payloads Boardgame** A hands-on pen-testing board game where players exploit networks, deploy payloads, and test their skills in lateral movement and defense. Come for the beer, stay for the fun, and celebrate the season with cybersecurity flair! **RSVP now to let us know you're coming and help us plan for an amazing time!** Whether you're a cybersecurity pro or just curious, we’d love to see you there!

Description: Добре дошли в месечната ни сбирка на OWASP Sofia! Welcome back to the OWASP Sofia Meetup! This event will also be in Bulgarian. We will do English-speaking events as soon as we have some international speakers. През Коледният месец ще си говорим за много интересни теми, които сме сигурни, че вълнуват много от вас. Ще си говорим за OWASP API vulnerabilities и за видове атаки срещу автомобилни ключалки. **Програма за 13 Декември 2024** * 19:00 - Начало и въведение - [Тодор Тодоров](https://todorov.bg) @ [Payhawk](https://payhawk.com) * 19:10 - [Николай Димитров](https://www.linkedin.com/in/nikolay-dimitrov-a26781b9/), Cyber Security Consultant @ [C-Serv](https://c-serv.com/) \- OWASP Top 10 attacks & defenses * 20:00 - Здравко Здравков, Physical Pen Tester @ Vigils Defence - How did I end up in your car * 20:45 - Закриване Събитието ще се проведе онлайн в Google Meet. Ако желаете да споделите нещо интересно свързани с Уеб Сигурност, моля изпратете ни вашата сесия на https://sessionize.com/owasp-sofia/ За следващите ни събития планираме да ги организираме на място, за целта си търсим желаещи хост компании, пишете ни ако имате интерес!

Description: Hi everyone - Let's plan to meet up at the Indy Hackers Holiday Social as our final meeting of the year! **\*\* Important \*\*** RSVP'ing to this meetup event doesn't register you for the Indy Hackers Holiday Social. Please register for the event at - https://www.eventbrite.com/e/2024-indy-hackers-holiday-social-tickets-1063326240409?aff=ebdssbdestsearch

Description: OWASP topic TBA

Description: Free with RSVP, 21+ with valid ID Join the Atlanta Cybersecurity Engineers Holiday Party sponsored by OWASP Atlanta Chapter in partnership with BlackHat Society, DC404, and Cyber Breakfast Club. We will celebrate our vibrant community with fresh tunes from local DJs, and play video games from gaming pop-up CartridgeATL. The winner of the gaming tournament will receive a $100 prize! Arrive on time so you can sign up. Evening festivities will be from 7PM - 11PM on Tuesday, December 17th, 2024. If you're interested in donating to the evening so we can provide complimentary food and drinks, please email [[email protected]](mailto:[email protected]). They will provide you details on your tax deductible donation. Thank you! Please RSVP directly with the venue here: [https://smithsoldebar.freshtix.com/events/owasp-foundation-holiday-party](https://smithsoldebar.freshtix.com/events/owasp-foundation-holiday-party)