[Owasp-leaders] Appsec awareness

Eoin eoin.keary at owasp.org
Wed Feb 27 16:25:39 UTC 2013

Hi leaders,
"Spreading the word" is a lot of what we do in owasp. We use wiki, social media, guides, build tools to enable our mission in action etc.

On Monday myself and Jim Manico delivered free training at the RSA conference in San Fransisco. We did a 4 hour session building from a description of issues, to some technical controls, to process integration.

We had 400 students, 6 kinder eggs. Many were developers, lots of testers and dev managers. Great discussion was had and many people found it valuable.

I believe owasp should deliver more of this free training as it seems to work! 

We get responses such as "I never knew what xss was" or "SQLI prevention is actually easy" etc.

We should offer such services to most Dev and sec conferences where possible. I think this could change the "game" in a big way.

Delivering free training is not really free. Students pay with their time. Presenters pay with their commercial time. OWASP pays to support such logistics, but the payback to our mission seems to be worth it.


Eoin Keary
Owasp Global Board
+353 87 977 2988

More information about the OWASP-Leaders mailing list