@joshcgrossman.com.bsky.social
Friendly AppSec Ghost ๐ป https://appsecg.host
Excited to be back delivering my course again at Black Hat USA!
05.08.2025 00:28 โ ๐ 2 ๐ 0 ๐ฌ 1 ๐ 0In "Making your preparations" I discuss some of the preparations you might need in the run-up to the course including materials and visa considerations.
Although visas are one of the last things I mention, it might be one of the first things to consider.
www.bouncesecurity.c...
In "Selling and Marketing your course", I talk about possibly the hardest part of the whole process, getting people to sign-up! I don't have all the answers but hopefully I have some ideas and thoughts that will be useful to you.
www.bouncesecurity.c...
The final two parts of my blog series about delivering training at conferences have now been released!
You can check them out on the @BounceSecurity website now!
Most passkey implementations are tripping over themselves to fall back to sending you an email OTP as fast as possible...
Passkeys are for UX, not for security
cornucopia.owasp.org
@sydseter.com is probably one of the local experts :)
Sign-up here:
www.blackhat.com/us-25/traini...
More information about the course:
www.bouncesecurity.com/training/acc...
Pulled last year's class workbook out so that I can prepare the updated version for this year.
You still have time to sign up for my updated course at @blackhatofficial.bsky.social #BHUSA, in person in Las Vegas, August 4-5.
You can find the whole series here:
www.bouncesecurity.c...
So you have a great training course with super-cool interactivity, now you have to get it accepted.
In my next blogpost, I talk about writing a proposal which appeals to both the review board and also your potential attendees.
Check it out here:
www.bouncesecurity.c...
Last week, I was honoured to received a Distinguished Lifetime Member award from OWASP at Global AppSec EU Barcelona 2025.
I wrote more about it here:
www.linkedin.com/pos...
So @ElarLang just published version 5.0.0 of OWASP ASVS, live on stage at @OWASP Global AppSec EU Barcelona 2025!
30.05.2025 10:06 โ ๐ 12 ๐ 7 ๐ฌ 0 ๐ 2
In October, 2021, we released 4.0.3 of the OWASP ASVS Standard. This release marked the start of the Vanilla Ice (or 5.0 as everyone else called it) release.
A major rethink about how we use the standard and with feedback from the community.
Last week to save before prices go up on 23rd May!
Unless you Accelerate your AppSec Programme, you are going to get left behind..
Join me @blackhatofficial.bsky.social #BHUSA this summer in Las Vegas (4-5 Aug) for a practical guide on how to build bridges with developers and build securely!
Welcome @blackhatofficial.bsky.social ๐
You should probably report this account for impersonation though...
bsky.app/profile/blac...
The #BHUSA Early Registration Rate ends May 23rd! Register today to lock-in the lowest rate before it increases. Register here >> bit.ly/4jnXIa5
#BHUSA #Cybersecurity
The #BHUSA 2025 Early Registration rate ends MAY 23! Secure your spot today at the lowest rates available>> bit.ly/4l9aYRH
08.05.2025 16:08 โ ๐ 1 ๐ 1 ๐ฌ 0 ๐ 0Link to the new post is here and don't forget to check out my other posts in this series "So you want to train at Black Hat (or other conferences)?"
www.bouncesecurity.c...
#BlackHat #Training #OWASP #AppSec
Want to make your security training course memorable? ๐ฏ
My latest post dives into creative ways to get students' hands dirty, from cloud-hosted labs to simulated stakeholder exercises. Learn how to make practical exercises the highlight of your course, not just an afterthought.
My blog series on developing training courses continues with a post about how to find the topic you are passionate about and that will also attract attendees:
www.bouncesecurity.c...
The bat-shit insane stories coming out of the US government this week is quite something
09.04.2025 23:56 โ ๐ 18 ๐ 2 ๐ฌ 0 ๐ 0You can see the previous posts in this series here:
So, you've decided you want to deliver training courses at a conference?
In the next post in my series about my experiences, I want to talk about money. I don't think it should be your main motivation but you probably can't ignore it!
Check it out:
www.bouncesecurity.c...
You can find out details in our contribution guide:
github.com/OWASP/ASV...
Alternatively, get in contact with us via OWASP Slack:
owasp.slack.com/arch...
Have your say now! Submit early to avoid disappointment ๐
2/2
๐ฏYOUR INPUT IS NEEDED!๐ฏ
@OWASP ASVS version 5.0 release candidate is ready for review.
The final version is planned for the end of May. We want your feedback before then!
Can devs understand it? How about testers? Anything missing?
Dive into GitHub and let us know!
1/2
I will be publishing the next post in this series tomorrow so look out for it!
This year should hopefully be the 3rd year that I train at @BlackHatEvents #BHUSA and also at @OWASP #AppSecEU?
But how did I get to this stage?
The short answer is a lot of thought and hard work.
And the long answer?
Well I thought I'd write some thoughts down...
๐งต 1/x
๐ Join Us as a Volunteer for OWASP AppSecIL!๐
Weโre gearing up for the OWASP Israel Conference in June 2025, and we need YOUR help to make it a success!
If youโre passionate about cybersecurity, networking, and community-driven events, this is your chance to get involved.
1/5
In the second post, I talk about my motivation behind getting to this stage. This wasn't an any easy process and it took a lot of work to get to the required level.
If this is something you are considering doing, you need to be ready to commit.
www.bouncesecurity.c...
๐งต4/x
