Happy to announce that #Vienna is getting its own @owasp chapter.

We are still in the process of setting everything up, so make sure to check out https://owasp.org/www-chapter-vienna/ for the latest status. :)

You can find all the current chapter leaders here in the #Fediverse: @firefart, @matthegap, @ntrm, @tightropemonkey, and me @shibayashi.

If you are interested in #AppSec or #Security in general, and happen to be around in Vienna when we have one of our meetups, come and join us. 😊

Happy to announce that #Vienna is getting its own @owasp chapter.

We are still in the process of setting everything up, so make sure to check out https://owasp.org/www-chapter-vienna/ for the latest status. :)

You can find all the current chapter leaders here in the #Fediverse: @firefart, @matthegap, @ntrm, @tightropemonkey, and me @shibayashi.

If you are interested in #AppSec or #Security in general, and happen to be around in Vienna when we have one of our meetups, come and join us. 😊

We, as an industry, need to start giving very specific and clear advice, if we want to have better outcomes. No more high level, vague, and ambiguous advice please.

https://youtu.be/XXtEpRN3ePc?si=0ZuWfOUYEdMFtbdI

#SpecificSecurity #BeSpecific #appsec #cybersecurity

I have a site that works fine everywhere until it is proxied. Then ERR_SSL_PROTOCOL_ERROR. Not pinned, proxy CA trusted, everything works as it should otherwise, but can't see it in Burp or ZAPs browser.

IT WORKS in Tor though. It's that the proxiest of proxied browsers?

Any clue?

#appsec #tls

Are you interested in a different kind of security conference?

Then take a look at the Open Security Conference ( @OSCo). #osco25 takes place from October 2 to 5 in Rückersbach (Germany near Frankfurt) and registration is still open at https://opensecurityconference.org/.
(this is an English version of the original German thread https://infosec.exchange/@realn2s/114936419689473030)

Why?

The Open Security Conference aims to be diverse and inclusive. This also includes different levels of knowledge and experience.
It is therefore not only for security experts or for people who have (already) worked in the security sector for a long time,
but also for people who are interested in security or want to get into the field.

The #OpenSpace format not only enables expert presentations,
but also non-expert topics or questions as session topics. Sessions are not resticted to presentations, they can be interactive, collaborative, workshops or basically anything else.

Since topics do not have to be submitted months in advance,
but the agenda is created jointly by the participants, hot topics can also be covered.

The conference is non-commercial, i.e. the total costs are shared between the participants (including the organizers).
The costs include accommodation and meals in the conference hotel.

And yes, there are also sponsors who cover part of the costs.

But not everything is different.

There are great keynotes e.g. by @bkastl ("History repeating itself") and Mireia Cano ("Building an AppSec Program from Scratch").

#CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity