Sched.com Conference Mobile Apps
Global AppSec Amsterdam
has ended
Create Your Own Event
Menu
Schedule
Speakers
Exhibitor Floor Plan
Search
Log in
Sign up
Global AppSec Amsterdam
-
Saved To
My Schedule
REGISTRATION IS NOW
Conference Venue:
RAI Amsterdam,
Europaplein 24, 1078 GZ Amsterdam, The Netherlands
Book Hotel click
HERE
Schedule
Simple
Expanded
Grid
By Venue
Speakers
Exhibitor Floor Plan
Search
or browse by date + venue
Board Meeting
Break
Breaking
Building
Ciso
Defending
HackPra
Keynote
Leaders Meeting
Members Lounge
Offsite Evening event
Project Review
Project Showcase
Reception
Tooling
Training - 1 day
Training - 2 day
Training - 3 day
Sign up
or
log in
to bookmark your favorites and sync them to your phone or calendar.
Monday
, September 23
D300 Foyer
12:30pm •
Lunch
D301
9:00am •
Seth & Ken’s Excellent Adventures in Secure Code Review
D302
9:00am •
Attacking Android and iOS apps by Example
TBA
9:00am •
The DevSecOps MasterClass
10:00am •
Am Coffee Break
3:00pm •
PM Coffee Break
Tuesday
, September 24
D300/D400 Foyer
10:30am •
AM Coffee Break
12:30pm •
Lunch
3:00pm •
PM Coffee Break
D304
9:00am •
Hands-on threat modeling and tooling for DevSecOps
D403
9:00am •
Breaking and Pwning Docker Containers and Kubernetes Clusters
Wednesday
, September 25
D201
6:00pm •
Leaders Meeting
7:00pm •
Public Board Meeting
D300/D400 Foyer
10:00am •
AM Coffee Break
12:30pm •
Lunch
3:00pm •
PM Coffee Break
D401
9:00am •
Your dynamic software security journey with OWASP SAMM2
D402
9:00am •
DevOps for CISO
D404
9:00am •
Project Review
Elicium 2
5:00pm •
Welcome Reception
Thursday
, September 26
D201
10:15am •
Attacking AWS: the full cyber kill chain
11:05am •
OWASP based Threat Modelling : Creating a feedback Model in an agile environment
11:55am •
Knative Security Pipelines
1:45pm •
OWASP SAMM2 - your dynamic software security journey
2:35pm •
Secure Agile development according to SAMM
4:05pm •
Mobile-friendly or Attacker-friendly? A Large-scale Security Evaluation of Mobile-first Websites
D202
10:15am •
Controlled Mayhem with Cloud Native Security Pipelines
11:05am •
Security Vulnerabilities Decomposition: Another way to look at Vulnerabilities
11:55am •
WebAuthn: Strong authentication vs. privacy vs. convenience
1:45pm •
Web Apps vs Blockchain dApps (Smart Contracts): tools, vulns and standards
2:35pm •
Threat Modelling Stories from the Trenches
4:05pm •
Modern and Secure IAM for Modern Applications
D203
10:15am •
Practical OWASP CRS in High Security Settings
11:05am •
The Zest of ZAP: How scripting in our favorite tool can bridge the gap between dev teams and security
11:55am •
Choosing the right static code analyzers based on hard data
1:45pm •
Being Powerful While Powerless: Elevating Security by Leading Without Authority
2:35pm •
The Now and the Future of Malicious WebAssembly
4:05pm •
OWASP Docker Top 10
D204
10:15am •
Remote Code Execution in Firefox Beyond Memory Corruptions
11:05am •
Manual JavaScript Analysis is a Bug
11:55am •
Securing ProtonMail: Building a Web App that Doesn’t Trust the Server
1:45pm •
Fun with KSM
2:35pm •
Ransomware Identification with Limited Information
4:05pm •
XSS magic tricks
D301
11:05am •
API Security Project
2:35pm •
Juice Shop
4:05pm •
ModSecurity Core Rule Set
Elicium 1
8:45am •
Opening Remarks
9:00am •
The house is built on sand: exploiting hardware glitches and side channels in perfect software
5:00pm •
Securing the Future
Elicium 2
9:45am •
AM Coffee Break
10:00am •
Members Lounge
12:40pm •
Lunch
3:20pm •
PM Coffee Break
Strandzuid
6:30pm •
Networking Event at Strandzuid
Friday
, September 27
D201
10:15am •
Restricting the scripts, you're to blame, you give CSP a bad name
11:05am •
Don't Trust The Locals: Evaluating and Mitigating the Insecurity Caused by Trusting Your Client-Side Storage
11:55am •
HTTP Desync Attacks: Smashing into the Cell Next Door
1:45pm •
The State of Credential Stuffing and the future of Account Takeovers
2:35pm •
Making the web secure, by design ++
4:05pm •
How To Learn (And Teach) Hacking
D202
10:15am •
SUSTO: Systematic Universal Security Testing Orchestration
11:05am •
How do JavaScript frameworks impact the security of applications?
11:55am •
[In]secure deserialization, and how [not] to do it
1:45pm •
No More Whack-a-Mole: How to Find and Prevent Entire Classes of Security Vulnerabilities
2:35pm •
Breaches Are Everywhere. What’s a Good Security Leader to Do?!
4:05pm •
Fast Forwarding mobile security with the OWASP Mobile Security Testing Guide
D203
10:15am •
Unlikely allies: how HR can help build a security-first culture
11:05am •
Do certain types of developers or teams write more secure code?
11:55am •
The Security we Need: Designing Usable IoT Security
1:45pm •
ScriptProtect: Mitigating Unsafe Third-Party JavaScript Practices
2:35pm •
Five key trends in application security
4:05pm •
How I Could Have Stolen Your Photos From Google
D301
10:15am •
SAMM
11:05am •
SecurityRat
11:55am •
Web Goat
Elicium 1
9:00am •
I've got a working title: The Woman Who Squashed Terrorists: When an Embassy gets Hacked
5:00pm •
An Infosec Timeline - Noteworthy Events from 1970 to 2050
Elicium 2
9:45am •
AM Coffee Break
10:00am •
Members Lounge
12:40pm •
Lunch
3:20pm •
PM Coffee Break
Timezone
Global AppSec Amsterdam
Europe/Amsterdam
Filter By Date
Global AppSec Amsterdam
Sep 23
-
27, 2019
Monday
, September 23
Tuesday
, September 24
Wednesday
, September 25
Thursday
, September 26
Friday
, September 27
Filter By Venue
RAI, Amsterdam
Sort schedule by Venue
D201
D202
D203
D204
D300 Foyer
D300/D400 Foyer
D301
D302
D304
D401
D402
D403
D404
Elicium 1
Elicium 2
Strandzuid
TBA
Filter By Type
Board Meeting
Break
Breaking
Building
Ciso
Defending
HackPra
Keynote
Leaders Meeting
Members Lounge
Offsite Evening event
Project Review
Project Showcase
Reception
Tooling
Training - 1 day
Training - 2 day
Training - 3 day