OWASP® Foundation

We released version 1.13.1 of #OWASP #WrongSecrets! Now with #springboot4 and challenges involving #telegram #AI, #MCP . You can test it at www.wrongsecrets.com . Like what you see? Please give our repo github.com/OWASP/wrongs... a 🌟 if you like it! #security #opensource

Happy Friday! 🚀

Missed a session or want to relive the highlights from OWASP Global AppSec DC? All talk recordings are now live on YouTube!

🎥 Catch what you missed
🔁 Share your favourites
💡 Keep your AppSec learning going

👉 www.youtube.com/play...

#owasp #appsec #infosec #cybersecurity

Great night at the OWASP Mixer in Oslo after NDC Security! 🍻

Beer, tapas, great conversations, and a lively game of Cornucopia. Huge thanks to Aikido Security for sponsoring and joining the fun!

#owasp #appsec #infosec #community

⏰ 24-hour countdown to the OWASP Contributor Mixer with NDC Conferences & Aikido Security!
🍺 Drinks
🍔 Snacks
💬 Real conversations
Contributor, curious, or just here for the vibes, all welcome.
No pitches. No pressure. Just security nerds connecting.
luma.com/txn0myuk

#appsec #community

Vienna just levelled up 🔥

Sven Schleier brings a 2-day, hands-on Android & iOS security training based on the OWASP Mobile Application Security Testing Guide.

🎟 owasp.glueup.com/eve...

#appsec #infosec #owasp

Two cats fighting with the in OWASP Cornucopia - in devs we trust logo and the text: Think like an attacker. #owasp #appsec #security #cybersec

After attending the OWASP Global AppSec conference, Christoffer introduced his team to OWASP Cornucopia—a gamified approach to threat modeling. Instead of another meeting, they started an end-of-month gaming day. Using the "Juice Shop" sandbox, learn to think like attackers in a way that sticks.

Release Release v2.6.21 · OWASP/cornucopia What's Changed update contributers list by @ayman-art in #2338 fix: use gh release upload for ZAP report upload to pre-release by @Mysterio-17 in #2339 fixed inconsistent UTF-8 encoding by @Suresh...

OWASP Cornucopia just released v2.6.21
github.com/OWASP/cornuc...

I want to give a huge thank you to everyone who contributed this week. In non-particular order. Thank you Ayman Osama Algamal, Adarsh Kumar, Mradul Tiwari, khushal-winner, Tanmay Ranjan, Suresh Krishna, Aashish Kharel, Ashnaa Seth

Don’t miss Aram Hovsepyan leading a 1-Day Training: Build your AppSec Program with OWASP SAMM in Vienna
🚀 Hands-on SAMM assessments
🧭 Turn chaos into a clear roadmap
🛡 Align with the EU Cyber Resilience Act
🤖 See where AI coding fits in real AppSec
🎟 owasp.glueup.com/eve...

#owasp #training

Heading to NDC Security in Oslo?
Join the OWASP Contributor Workshop for hands-on learning, global community energy, and your first real contribution.
Show up curious. Leave contributing.
📆 March 6
🎟 luma.com/4hp7c8bm
#owasp #NDC #opensource #appsec #infosec

📢 Open WAF Day 2026 — Vienna, June 24th! 🇦🇹
A free, full-day event on WAFs, @coreruleset, and open-source security. CFP is open!
🎟️ Register: forms.gle/UckehAUPdR...
🎤 Submit a talk: forms.gle/PoBKhza7Yc...
See you there! 🚀
#OWASP #WAF #AppSec #CRS

“After years evaluating security trainings at Black Hat… I can say this AI threat modeling course stands out. Hands-on approach, smooth flow, truly exceptional, it’s a must-attend.” — Daniel Cuthbert

Join Sebastien in Vienna this June for 3 days of AI Whiteboard Hacking 🚀
owasp.glueup.com/eve...

Don’t miss the OWASP Contributor Mixer with NDC Conferences & Aikido Security!
🍺 Drinks • 🍔 Snacks • 💬 Real conversations
No pitches, no pressure — just community.
Join us: luma.com/txn0myuk

#owasp #NDC #mixer #opensource #appsec #cybersecurity #community

Have you heard? 👂
Early bird pricing is OPEN for Global AppSec USA, coming to San Francisco this November!

Celebrate 25 years of OWASP and be part of an unforgettable AppSec experience. 🎟️
👉 owasp.glueup.com/eve...

#AppSec #OWASP #CyberSecurity #EarlyBird #SanFrancisco

Join us in Oslo for the OWASP Contributor Workshop. Get hands-on with the projects powering open-source security worldwide. Learn, connect, and start contributing on the spot.

📆 March 6
🎟️ Free signup: luma.com/4hp7c8bm

#owasp #NDC #workshop #opensource #appsec #infosec #community

🎉 CFP is OPEN for our 2nd Virtual Conference!

🗓 Sept 21, 2026 | ⏰ 9 AM CST | 🌐 Virtual
🎤 Expert talks + practical sessions + regional chapter highlights

Got a talk idea? Submit here 👉 sessionize.com/owasp...

⏳ Closes May 1, 11:59 PM PDT

#owasp #AppSec #Cybersecurity #CFP

Join the OWASP Contributor Mixer alongside NDC Security! No slides, no sales, just real conversations with the people behind OWASP’s open-source projects. Grab a drink, meet collaborators, and see how to get involved. All welcome. luma.com/txn0myuk
#owasp #opensource #mixer #NDC #community

OWASP Cornucopia - Website App Edition - DATA VALIDATION & ENCODING (VE3) Robert can input malicious data because the allowed protocol format is not being checked, or duplicates are accepted, or the structure is not being verified, or the individual data elements are not be...

OWASP Cornucopia is really close to be releasing Website App 3.0 version: cornucopia.owasp.org/edition/webapp/VE3/3.0/en

we need help with the translations into Spanish, Italian, Deutch, Portugues (Portugal), Portugues (Brazil), German, Norwegian, Russian, and French,

OWASP Cornucopia is publishing it’s darkest secrets! Why do we keep our darkest fears secret? Publish them, and bring light to the darkest corners of your...

Why do we keep our darkest fears secret?

Play OWASP Cornucopia, publish them, and bring light to the darkest corners of your web application. dev.to/owasp/owasp-...

#appsec #infosec #security #threatmodeling #owasp

🚀 The OWASP Smart Contract Top 10 team announces the 2026 OWASP Smart Contract Top 10. New research highlights the most critical smart contract risks, helping Web3 developers and security teams stay ahead of evolving threats. owasp.org/www-projec...

#OWASP #SmartContracts #Web3 #OpenSource

We’re thrilled to welcome Daniel Cuthbert as keynote speaker for our 25th anniversary virtual conference! 🎉 It’s free (yes, really 😉) and packed with insightful talks, community highlights, and celebration.

Join us online! 🎂✨ owasp.glueup.com/eve...
#appsec #community #conference #cybersecurity

Global AppSec Vienna sponsorships are going fast 🚀

Put your brand in front of 700+ security pros, celebrate OWASP’s 25th anniversary 🎂, and be part of an AppSec event packed with fresh ideas, all in Vienna 🇦🇹

Don’t miss out 👇
owasp.glueup.com/eve...

#AppSec #CyberSecurity #OWASP #Vienna

Release Release v2.6.0 · OWASP/cornucopia What's Changed Bump svelte from 5.49.2 to 5.50.0 in /cornucopia.owasp.org by @dependabot[bot] in #2188 Bump postgrex from 0.21.1 to 0.22.0 in /copi.owasp.org by @dependabot[bot] in #2186 Bump wait...

OWASP Cornucopia just release v2.6.0

github.com/OWASP/cornuc...

The new release comes with support for continuing the game session even if players can not continue the game when playing on copi.owasp.org

#owasp #appsec #security #cornucopia

⏳ Call for PODs closes Friday, Feb 13!
We’re introducing PODs (Practical On-Demand sessions): 2–3 hour, hands-on, small-group experiences alongside the conference. Less listening, more doing! Got an idea? Submit it 👉 lnkd.in/eA_pNyks

#owasp #globalappsec #opensource #conference

Have you heard? 👂
Early bird pricing is OPEN for Global AppSec USA, coming to San Francisco this November!

Celebrate 25 years of OWASP and be part of an unforgettable AppSec experience. 🎟️
👉 owasp.glueup.com/eve...

#AppSec #OWASP #CyberSecurity #EarlyBird #SanFrancisco

Be part of New England’s flagship AppSec event 🎉

Join us as a vendor at OWASP BASC 2026 and connect with 150+ application security pros. Sponsoring BASC puts your brand front and center with top AppSec experts, while supporting the OWASP community 💙

Learn more 👉 www.basconf.org

Web Application Security Essentials Overview This video is a high level overview of our Web Application Security Essentials training. It introduces the OWASP Top 10 2025 as the baseline for common web application risks and frames the learning objectives for the session, including risk awareness across both human written and AI generated code.

Not sure what to expect from the London OWASP Training Days? 👀

Here’s a quick overview of Fabio Cerullo’s Web Application Security Essentials training, for one more reason to join us 📆
www.youtube.com/watc...


#appsec #owasp #training #opensource #webapplicationsecurity

Ready to plan ahead and save? 🎉
Early bird pricing is OPEN for Global AppSec USA, coming to San Francisco this November!

Celebrate 25 years of OWASP and be part of an unforgettable AppSec experience. 🎟️
👉 owasp.glueup.com/eve...

#AppSec #OWASP #CyberSecurity #EarlyBird #SanFrancisco

Sponsorships for Global AppSec Vienna are going fast! 🚀
Get in front of 700+ attendees, celebrate our 25th Anniversary, and be part of an unforgettable event in Vienna 🇦🇹
Learn more 👇
owasp.glueup.com/eve...

#sponsor #exhibit #conference #appsec #opensource #cybersecurity #vienna

Last call! 🎤 Global AppSec Vienna Early Bird pricing flies away tomorrow, Feb 1st. Don’t miss your chance to save! 🎟️🔥
owasp.glueup.com/eve...

#appsec #earlybird #conference #vienna #owasp #opensource #cybersecurity

📍 London’s calling! 🇬🇧
Have you booked your spot at the OWASP London Training Days yet?
Choose from 1, 2, or 3-day courses, led by world-renowned OWASP trainers, hosted at King’s College London. Don’t miss it, secure your place now!
owasp.glueup.com/eve...

#appsec #owasp #training #opensource