Title | Track | Year | Month |
---|
A call for Metrics | DevSecOps | 2024 | Jan |
A workshop on DAST and how to put it into your pipeline | DevSecOps | 2022 | May |
Abuse Tests for Developers | DevSecOps | 2022 | Jan |
AI and AppSec: are we finally on the verge of the big breakthrough? | DevSecOps | 2024 | Dec |
AMA with Jeremiah Grossman | DevSecOps | 2021 | Jan |
AMA with Jim Manico | DevSecOps | 2021 | Jan |
An AppSec guide to practical cryptography | DevSecOps | 2023 | Feb |
Anticipating the Future: Strengthening App Security through Developer-Centric Foresight | DevSecOps | 2023 | Oct |
API Security by Design | DevSecOps | 2024 | Jan |
Application Security vulnerabilities - measurements, maturity magicĀ - Vulnerability Framework Project | DevSecOps | 2023 | Apr |
Applying Zero Trust Principles to OT/ICS (Operational Technology & Industrial Control Systems) | DevSecOps | 2022 | Jul |
AppSec Threats Deserve Their Own Incident Response Plan | DevSecOps | 2023 | Oct |
AppSec Trending & recommendations:Fixing Security in Cloud & Appsec | DevSecOps | 2022 | May |
AttackGen: Harnessing Language Models for Cybersecurity Simulations | DevSecOps | 2023 | Oct |
Automation and scale with OWASP ZAP | DevSecOps | 2022 | Dec |
AWS Security Hub (Panel) | DevSecOps | 2023 | Feb |
Beat Alert Fatigue with Cyber Asset Relationship Graphs | DevSecOps | 2022 | May |
ChatGPT and GenAI Privacy - Massive Uncertainty and Massive Opportunity | DevSecOps | 2023 | Oct |
Check out their (lateral) moves! The importance of blast radius in DevSecOps | DevSecOps | 2021 | Nov |
Cloud-Native Security Tools: Enhancing Cloud Protection Capabilities(Panel) | DevSecOps | 2023 | Oct |
Compliant Kubernetes - Case Study | DevSecOps | 2021 | Apr |
Context is king; Prioritization is queen, and CVSS is dead | DevSecOps | 2022 | Dec |
Continuous Access Control with OPAL and Cedar | DevSecOps | 2023 | Jun |
Cooking the perfect docker container for a react app Part 2 | DevSecOps | 2022 | Jan |
Creating 1 million kubernetes pods - Lessons learned | DevSecOps | 2021 | Apr |
Creating a Scalable API Test Framework using AWS and Elastic | DevSecOps | 2021 | Nov |
Creating Secure Builds of Containers | DevSecOps | 2020 | Dec |
Creating the GenAI Athena Bot from the theCyberboardroom.com | DevSecOps | 2023 | Oct |
CVSS, CVE, Vulnerabilities and the land of broken dreams | DevSecOps | 2022 | Sep |
DAST - Dynamic Analysis integration lab | DevSecOps | | |
Dependency scanning lab | DevSecOps | | |
DevSecOps beyond CI/CD pipelines | DevSecOps | 2022 | Sep |
DevSecOps for Modern Identity and Access Management | DevSecOps | 2022 | Sep |
DevSecOps Maturity Model Updates | DevSecOps | 2023 | Oct |
Docker For Security Professionals | DevSecOps | 2022 | May |
Doing Compliance Differently: Policies as Code, Evidence-based compliance through automation | DevSecOps | 2022 | Mar |
DSOMM News and Belts-Workshop | DevSecOps | 2021 | Sep |
Embrace Secure Defaults, Block Anti-patterns, and Kill Bug Classes with Semgrep | DevSecOps | 2020 | Dec |
Fundamentals of Cloud Security, Threat Identification, AWS Services | DevSecOps | 2022 | Jan |
GitHub Actions & code scanning with CodeQL | DevSecOps | | |
Going Multicloud: Securing Human and Service Identities in AWS vs Azure | DevSecOps | 2021 | Nov |
Hack your own app! | DevSecOps | 2022 | May |
Hacking OAuth: An Attacker's View of Your OAuth Flows | DevSecOps | 2024 | Dec |
How can we make Grafana a great open source security tool? | DevSecOps | 2022 | May |
How GenAI Agents will Dramatically Change our Industry | DevSecOps | 2023 | Oct |
How to Operate a Secure Kubernetes platform | DevSecOps | 2023 | Feb |
How Variant Analysis and CodeQL helped secure the fight against COVID-19 | DevSecOps | 2021 | Jan |
How we build a security automation software utilizing open-source components (Betterscan.io) | DevSecOps | 2023 | Feb |
Infrastructure scan & Encryption | DevSecOps | | |
IoT and Cyber Threat Intelligence: Staying Ahead of the Curve (Panel) | DevSecOps | 2024 | Feb |
Jim and Dinis Talk Appsec | DevSecOps | 2022 | May |
Jira-Jupyter integration introduction | DevSecOps | | |
Kubernetes Security | DevSecOps | 2022 | May |
Lessons learned from trying to create Architecture Diagrams As Code | DevSecOps | 2022 | Mar |
LGTM in action | DevSecOps | | |
Linux (kernel) containerization without Docker/runc/OCI | DevSecOps | 2023 | April |
Living off the Land & Fileless Attacks - Move Beyond the "Known Bad" | DevSecOps | 2022 | Dec |
Low-code access control: Making the complex world of permissions approachable to everyone | DevSecOps | 2022 | Dec |
Mitigating Risks Through Open-Source Bitcoin Tracing | DevSecOps | 2021 | Apr |
Open Policy Agent | DevSecOps | 2022 | Dec |
Open Security Control Testing at Scale | DevSecOps | 2022 | Mar |
Open source modern access control | DevSecOps | 2022 | May |
OSS DevSecOps projet | DevSecOps | 2021 | Sep |
Overview of the new DSOMM Application | DevSecOps | 2022 | Sep |
OWASP DSOMM Enhancement Workshop | DevSecOps | 2021 | Apr |
OWASP Top Ten Part 2 | DevSecOps | 2022 | Mar |
Owning AppSec Automation with Python | DevSecOps | | |
Parsec-Hardware security at your fingertips | DevSecOps | 2022 | Mar |
Permission Models As Code - Securing the Entire Stack | DevSecOps | 2022 | Sep |
Privacy As Code: Open-Source Developer Tools For Data Privacy | DevSecOps | 2022 | Jan |
Privacy-The Challenges in Post Tornado Cash World | DevSecOps | 2022 | Dec |
Protect Your Application, Not Just the Network. Add Zero Trust Superpowers to Your Critical Applications and Systems | DevSecOps | 2023 | Oct |
Purple Teaming with OWASP PurpleTeam | DevSecOps | 2022 | Mar |
Ransomware Resilience: Strategies for Prevention and Recovery (Panel) | DevSecOps | 2024 | Feb |
SAST - Static Analysis integration lab | DevSecOps | | |
Scaling Incident Response using Jira, Jupyter and GSuite | DevSecOps | 2021 | Jan |
Scaling Kubernetes - One Pod per file | DevSecOps | 2021 | Jun |
Scaling Threat Models visualisations using PlantUML and VisJS | DevSecOps | 2020 | Dec |
Scaling Your Security Program with Semgrep | DevSecOps | 2021 | Jun |
SDA SE Cluster Scanner is going Open Source | DevSecOps | 2021 | Mar |
Secrets and credentials scanning lab | DevSecOps | | |
Secured Digital Workspace | DevSecOps | 2022 | May |
Securing CI/CD runners through eBPF agent | DevSecOps | 2024 | Jan |
Security as Code: A DevSecOps Approach | DevSecOps | 2022 | Mar |
Security-Scan your production images | DevSecOps | 2021 | Sep |
Shift Smart - risk based approach on appsec | DevSecOps | 2023 | Jun |
Shift-Right Security: Emphasizing Post-Deployment Monitoring and Response (Panel) | DevSecOps | 2023 | Oct |
Shodan OSINT Automation to Mass Exploitation of Vulnerabilities | DevSecOps | 2022 | Jan |
SOAR - Security Orchestration, Automation, and Response (Panel) | DevSecOps | 2023 | Feb |
Sonar Cube Integrations with GitHub | DevSecOps | 2020 | Dec |
Spreading security across the SDLC (with semgrep and other tools) | DevSecOps | 2021 | Mar |
Starbase - Graph-based security analysis for everyone | DevSecOps | 2022 | Mar |
Stop Committing Your Secrets - Git Hooks To The Rescue | DevSecOps | 2024 | Jan |
Taking Your DevOps Tooling To The Dark Side | DevSecOps | 2023 | Jun |
Testing Ephemeral Kubernetes Applications | DevSecOps | 2021 | Jun |
The Rise of AI Security Engineers | DevSecOps | 2024 | Jun |
Threat Modeling Kata VI | DevSecOps | 2024 | Dec |
Threat Modeling V | DevSecOps | 2024 | Jun |
To DevSecOps or not to DevSecOps: is that a question? | DevSecOps | | |
Tune your Toolbox for Velocity and Value (SCA) | DevSecOps | 2022 | Mar |
Using AppMap runtime code visualizations to scout for security flaws | DevSecOps | 2022 | Mar |
Using Domain Specific Languages (DSL) for testing | DevSecOps | 2021 | Jan |
Using Elastic and Kibana for Scale and Security Visualisation | DevSecOps | 2021 | Nov |
Using Kubernetes to create a scalable Security Proxy solution | DevSecOps | 2020 | Oct |
Using Open Source AppMap for Runtime Security Analysis | DevSecOps | 2022 | Dec |
Using OWASP Nettacker for Recon and Vulnerability Scanning | DevSecOps | 2022 | Jul |
Using Splunk for Incident Response (Panel) | DevSecOps | 2023 | Dec |
Using Teleport to Secure SSH and Kubernetes Access | DevSecOps | 2021 | Nov |
Using VPC Flows to monitor EC2 Traffic | DevSecOps | 2021 | Apr |
WordPress: Hacking and Securing | DevSecOps | 2022 | Dec |
Yor:Automated IaC tag and trace | DevSecOps | 2021 | Jun |
Zero Trust Database Access Using OpenZiti and JDBC | DevSecOps | 2023 | Apr |
Zero Trust Network Access Framework | DevSecOps | 2022 | Jul |
Cloud PenTesting Concepts , CloudGoat Walkthrough , Securing Cloud Endpoints | Cloud-Security | 2022 | Mar |
Cloud Security Best Practices: Navigating the Evolving Landscape (Panel) | Cloud Security | 2024 | Feb |
Distroless Containers | Owasp | 2021 | May |
The Cloud Security Architects aka the knights of the cloud kingdom - Panel Discussion | Cloud-Security | 2022 | Mar |