AI and API Security Panel

OWASP Spot

The State of Secure DevOps - Security enables Velocity

OpenCRE.org - Universal Translator for Security

Level Up Your Security Champions (and Your Program)

How to Avoid Potholes When Scaling Your Application Security Program

Bootstrap Your Software Security with OWASP SAMM 2.1

“Shift Left” Isn’t What You Expected

Moving Forward By Looking Back: Data Collection and Analysis at OWASP

Influencing Without Authority: The Foundations of a Successful Security Department of Yes

Better Protect Sensitive Data in the Cloud with Client-Side Application Layer Encryption

Cutting to the chase: Security Design and Guidance at scale

From SBOMs to F-Bombs: Vulnerability Analysis, SCA Tools, and False Positives & Negatives

Using WebAssembly to run, extend, and secure your application!

OWASP Low-Code No-Code Top 10

No Code you shall use, malware you shall get

AppSec Threats Deserve Their Own Incident Response Plan

Credential Sharing as a Service: the Dark Side of No Code

DevSecOps Worst Practices

Fixing Broken Access Control

Everything-as-Code: Pushing the boundaries of SAST

Automated Security Testing with OWASP Nettacker

AI Red Teaming LLM: Past, Present, and Future

Refactoring Mobile App Security

Could Passwordless be Worse than Passwords?

Hacking & Securing Android Applications

Metrics, metrics everywhere - from which ones I should be scared?

Discovering Shadow Vulnerabilities in Popular Open-Source Projects A Journey Through Reverse-Fuzzing

ASVS Testing: You Keep Using Those Words

What is OWASP and OWASP Membership