Sched.com Conference Mobile Apps
Global AppSec Amsterdam
has ended
Create Your Own Event
Global AppSec Amsterdam
-
Saved To
My Schedule
REGISTRATION IS NOW
Conference Venue:
RAI Amsterdam,
Europaplein 24, 1078 GZ Amsterdam, The Netherlands
Book Hotel click
HERE
Schedule
Simple
Expanded
Grid
By Venue
Speakers
Exhibitor Floor Plan
Search
or browse by date + venue
Board Meeting
Break
Breaking
Building
Ciso
Defending
HackPra
Keynote
Leaders Meeting
Members Lounge
Offsite Evening event
Project Review
Project Showcase
Reception
Tooling
Training - 1 day
Training - 2 day
Training - 3 day
Sign up
or
log in
to bookmark your favorites and sync them to your phone or calendar.
menu
Menu
Log in
Sign up
Schedule
Speakers
Exhibitor Floor Plan
Search
tune
Filter sessions
Simple
Expanded
Grid
By Venue
Monday
, September 23
D300 Foyer
12:30pm •
Lunch
D301
9:00am •
Seth & Ken’s Excellent Adventures in Secure Code Review
D302
9:00am •
Attacking Android and iOS apps by Example
TBA
9:00am •
The DevSecOps MasterClass
10:00am •
Am Coffee Break
3:00pm •
PM Coffee Break
Tuesday
, September 24
D300/D400 Foyer
10:30am •
AM Coffee Break
12:30pm •
Lunch
3:00pm •
PM Coffee Break
D304
9:00am •
Hands-on threat modeling and tooling for DevSecOps
D403
9:00am •
Breaking and Pwning Docker Containers and Kubernetes Clusters
Wednesday
, September 25
D201
6:00pm •
Leaders Meeting
7:00pm •
Public Board Meeting
D300/D400 Foyer
10:00am •
AM Coffee Break
12:30pm •
Lunch
3:00pm •
PM Coffee Break
D401
9:00am •
Your dynamic software security journey with OWASP SAMM2
D402
9:00am •
DevOps for CISO
D404
9:00am •
Project Review
Elicium 2
5:00pm •
Welcome Reception
Thursday
, September 26
D201
10:15am •
Attacking AWS: the full cyber kill chain
11:05am •
OWASP based Threat Modelling : Creating a feedback Model in an agile environment
11:55am •
Knative Security Pipelines
1:45pm •
OWASP SAMM2 - your dynamic software security journey
2:35pm •
Secure Agile development according to SAMM
4:05pm •
Mobile-friendly or Attacker-friendly? A Large-scale Security Evaluation of Mobile-first Websites
D202
10:15am •
Controlled Mayhem with Cloud Native Security Pipelines
11:05am •
Security Vulnerabilities Decomposition: Another way to look at Vulnerabilities
11:55am •
WebAuthn: Strong authentication vs. privacy vs. convenience
1:45pm •
Web Apps vs Blockchain dApps (Smart Contracts): tools, vulns and standards
2:35pm •
Threat Modelling Stories from the Trenches
4:05pm •
Modern and Secure IAM for Modern Applications
D203
10:15am •
Practical OWASP CRS in High Security Settings
11:05am •
The Zest of ZAP: How scripting in our favorite tool can bridge the gap between dev teams and security
11:55am •
Choosing the right static code analyzers based on hard data
1:45pm •
Being Powerful While Powerless: Elevating Security by Leading Without Authority
2:35pm •
The Now and the Future of Malicious WebAssembly
4:05pm •
OWASP Docker Top 10
D204
10:15am •
Remote Code Execution in Firefox Beyond Memory Corruptions
11:05am •
Manual JavaScript Analysis is a Bug
11:55am •
Securing ProtonMail: Building a Web App that Doesn’t Trust the Server
1:45pm •
Fun with KSM
2:35pm •
Ransomware Identification with Limited Information
4:05pm •
XSS magic tricks
D301
11:05am •
API Security Project
2:35pm •
Juice Shop
4:05pm •
ModSecurity Core Rule Set
Elicium 1
8:45am •
Opening Remarks
9:00am •
The house is built on sand: exploiting hardware glitches and side channels in perfect software
5:00pm •
Securing the Future
Elicium 2
9:45am •
AM Coffee Break
10:00am •
Members Lounge
12:40pm •
Lunch
3:20pm •
PM Coffee Break
Strandzuid
6:30pm •
Networking Event at Strandzuid
Friday
, September 27
D201
10:15am •
Restricting the scripts, you're to blame, you give CSP a bad name
11:05am •
Don't Trust The Locals: Evaluating and Mitigating the Insecurity Caused by Trusting Your Client-Side Storage
11:55am •
HTTP Desync Attacks: Smashing into the Cell Next Door
1:45pm •
The State of Credential Stuffing and the future of Account Takeovers
2:35pm •
Making the web secure, by design ++
4:05pm •
How To Learn (And Teach) Hacking
D202
10:15am •
SUSTO: Systematic Universal Security Testing Orchestration
11:05am •
How do JavaScript frameworks impact the security of applications?
11:55am •
[In]secure deserialization, and how [not] to do it
1:45pm •
No More Whack-a-Mole: How to Find and Prevent Entire Classes of Security Vulnerabilities
2:35pm •
Breaches Are Everywhere. What’s a Good Security Leader to Do?!
4:05pm •
Fast Forwarding mobile security with the OWASP Mobile Security Testing Guide
D203
10:15am •
Unlikely allies: how HR can help build a security-first culture
11:05am •
Do certain types of developers or teams write more secure code?
11:55am •
The Security we Need: Designing Usable IoT Security
1:45pm •
ScriptProtect: Mitigating Unsafe Third-Party JavaScript Practices
2:35pm •
Five key trends in application security
4:05pm •
How I Could Have Stolen Your Photos From Google
D301
10:15am •
SAMM
11:05am •
SecurityRat
11:55am •
Web Goat
Elicium 1
9:00am •
I've got a working title: The Woman Who Squashed Terrorists: When an Embassy gets Hacked
5:00pm •
An Infosec Timeline - Noteworthy Events from 1970 to 2050
Elicium 2
9:45am •
AM Coffee Break
10:00am •
Members Lounge
12:40pm •
Lunch
3:20pm •
PM Coffee Break
Timezone
Global AppSec Amsterdam
Europe/Amsterdam
Filter By Date
Global AppSec Amsterdam
Sep 23
-
27, 2019
Monday
, September 23
Tuesday
, September 24
Wednesday
, September 25
Thursday
, September 26
Friday
, September 27
Filter By Venue
RAI, Amsterdam
Sort schedule by Venue
D201
D202
D203
D204
D300 Foyer
D300/D400 Foyer
D301
D302
D304
D401
D402
D403
D404
Elicium 1
Elicium 2
Strandzuid
TBA
Filter By Type
Board Meeting
Break
Breaking
Building
Ciso
Defending
HackPra
Keynote
Leaders Meeting
Members Lounge
Offsite Evening event
Project Review
Project Showcase
Reception
Tooling
Training - 1 day
Training - 2 day
Training - 3 day
Filter sessions
Apply filters to sessions.
close
Dates
Monday
, September 23
Tuesday
, September 24
Wednesday
, September 25
Thursday
, September 26
Friday
, September 27
Venue
D201
D202
D203
D204
D300 Foyer
D300/D400 Foyer
D301
D302
D304
D401
D402
D403
D404
Elicium 1
Elicium 2
Strandzuid
TBA
Session Type
Board Meeting
Break
Breaking
Building
Ciso
Defending
HackPra
Keynote
Leaders Meeting
Members Lounge
Offsite Evening event
Project Review
Project Showcase
Reception
Tooling
Training - 1 day
Training - 2 day
Training - 3 day
Other Filters
