OWASP Tampa
Welcome to the Tampa OWASP Chapter!
Welcome to the Tampa chapter of the Open Web Application Security Project (OWASP), a nonprofit foundation that works to improve the security of software. Our chapter is open to anyone interested in learning more about application security and cybersecurity, regardless of one’s level of expertise, background, or profession. We aim to provide a welcoming, inclusive, and educational environment for all our members.
Who We Are
OWASP is a global community that drives visibility and evolution in the safety and security of the world’s software. The Tampa OWASP chapter is part of this larger organization, focusing on local events, meetups, and initiatives that foster awareness and understanding of security best practices in the Tampa area.
Our Mission
Our mission is to:
- Educate individuals and organizations on the importance of secure software development and best practices in application security.
- Provide a forum for networking and collaboration among the cybersecurity community in Tampa.
- Encourage the contribution to and usage of open source security tools and resources.
Meetings and Events
We hold regular meetings and events including:
- Quarterly Meetups: Featuring presentations from security experts on various topics related to application security and cybersecurity trends.
All our events are free and open to anyone who wishes to attend.
Get Involved
There are many ways to get involved with the Tampa OWASP chapter:
- Attend our meetups and events: Keep an eye on our Meetup page for upcoming events.
- Speak at an event: We’re always looking for new speakers and topics. If you’re interested in presenting, please contact us.
- Volunteer: Help us organize events, manage our community outreach, or contribute to our projects.
- Sponsor: If your organization is interested in supporting our chapter, please reach out for sponsorship opportunities.
Stay Connected
- Meetup: OWASP Tampa Chapter Meetup Page
- LinkedIn: Join our LinkedIn group for professional networking.
- Facebook OWASP Tampa Chapter Facebook Page
Contact Us
For any questions or more information, please email any of our organizers.
We look forward to seeing you at an upcoming event and joining our efforts to improve software security in the Tampa area!
OWASP Tampa Chapter 2024-Q3 Lunch and Learn SCA in the world of AI
- by: Endor Labs
Date:
- Wednesday, September 11, 2024
Venue:
- The Neon Temple 5406 Hoover Blvd, Tampa, FL 33634
- Free Parking available
Time:
- 11:00am to 1:00pm
Registration: https://www.meetup.com/owasp-tampa/events/303088588/
Description: What’s in your AI code?
With the rise in AI, there is more focus on Python dependency management and SCA scanning. Python’s dependency management system makes it easy for developers to leave dependencies out of the manifest. This means that almost every SCA tool that relies on a manifest will be wrong. We show how leveraging program analysis techniques one can avoid the pitfalls of these so-called phantom dependencies.
Agenda:
- 11:00am - Registration and Lunch
- 12:00pm - Speaker - Nate Michalov - SCA in the world of AI
- 1:00pm - Depart
Speakers
Nate Michalov is a seasoned application security professional with over 12 years of diverse experience. Throughout his career, Nate has contributed to organizations such as Endor Labs, Apiiro, Snyk, Veracode, and Annkissam, where he has focused on securing digital ecosystems while aligning technological strategies with business objectives. In various roles including customer success architect, senior sales engineer, and senior SAST specialist, Nate has consistently tackled complex challenges at the intersection of business and technology. Known for his collaborative approach and dedication to staying informed about emerging trends, Nate is recognized as a trusted advisor in promoting innovation and resilience in application security.
Location
- This is an in-person and streaming events is available.
- The Neon Temple 5406 Hoover Blvd, Tampa, FL 33634
- Free Parking available
Past Events and Presentation Archives
2024-Q2 - OWASP Tampa Chapter 2024-Q2 Lunch and Learn: From Reactive to Effective: Building Application Security that Works - Sponsor - Mend and OWASP Tampa Chapter
2024-Q1 - OWASP Tampa Chapter 2024-Q1 Lunch and Learn: Appsec in an AI-powered world - Sponsor - Qwiet.AI and OWASP Tampa Chapter
2023-Q4 - OWASP Tampa Chapter Q4 End of Year Minicon: The Future of Cybersecurity and Beyond - Sponsor - Tampa Bay ISSA Chapter and OWASP Tampa Chapter
2019-Q1 - Application Security in an Ever Changing Digital Landscape - Trace Hollifield - Presentation Slides here
2016-Q4 - Mark Villinski, Kaspersky - Unlock the Key to Repel Ransomware, Major General Oleg D. Kalugin, Formerly with KGB and author of “Spymaster”, John Ford- Defend Trade Secrets Act of 2016, Steve Obeck, Tanium- Security Hygiene, Jeremy Rasmussen, Cybersecurity Director of Abacode - “Incident Response and Investigations: Tales from the Trenches”
2016-Q3 - Red Team Operating in a modern environment - Jonathan Echavarria - Presentation Slides here
2016-Q2 - OpenSAMM Software Assurance Maturity Model - Eoin Fitzpatrick
- Presentation Slides here
2016-Q1 - AppSec Pipeline: Application Security in a world of Agile Development, Continuous Change and DevOps - Doug Morato - Presentation Slides here
2015-Q4 - Care & Feeding of Programmers-Addressing App Sec Gaps with Headers - Sunny Wear - Presentation Slides here
2015-Q4 - Secure Session Management - Brian Beaudry - Presentation Slides here
OWASP Tampa Day 2014 - Shadow IT Does Not Have To Be Shady - Scott VanWart - Presentation Slides here
OWASP Tampa Day 2014 - Offensive Mobile Forensics - Joey Peloquin - Presentation Slides here
OWASP Tampa Day 2014 - OWASP Top 10 for MVC 4 and Greater - James Davis
- Presentation Slides here
OWASP Tampa Day 2014 - Application Centric Mobile Application Security Model - Daniel Bender - Presentation Slides here
OWASP Tampa Day 2014 - Intern down for what? - Tony Turner - Presentation Slides here
2014-Q3 - Do we really know the OWASP Top 10? - Jon Singer - Presentation Slides here
2014-Q1 - Herding Cats - Carl Brothers - Presentation Slides here
2014-Q1 - The Enemy Within - Ramece Cave - Presentation Slides here
OWASP Tampa Day 2013 - Securing Your Applications’ Data With Web Application Firewalls - Dennis K. Usle - Presentation Slides here
OWASP Tampa Day 2013 - Bring Your Own Service - Doug Maul - Presentation Slides here
OWASP Tampa Day 2013 - Design Consideration & Guiding Principles for Implementing Cloud Security - Bill Sterns - Presentation Slides here
OWASP Tampa Day 2013 - Let’s Get Right To The Endpoint - Mel Pless - Presentation Slides here
OWASP Tampa Day 2013 - Vulnerability Management That Works - Tony Turner
- Presentation Slides here
2012-Q3 - Taming the B.E.A.S.T. - Richard Newman - Presentation Slides [https://www.owasp.org/images/1/10/Taming_the_B.E.A.S.T..pdf here]
OWASP Tampa Day 2012 - Changing the Game - Jason Kent - Presentation Slides here
OWASP Tampa Day 2012 - MDM Technical Presentation - Keith Katz - Presentation Slides here
OWASP Tampa Day 2012 - Federated Identities in the Real World - Nathan Sargent - Presentation Slides here
OWASP Tampa Day 2012 - Define and Optimize Your Approach to Application Security - Bruce Jenkins - Presentation Slides here
OWASP Tampa Day 2012 - Anonymous: Lessons Learned - Bill Church - Presentation Slides here
2012-Q1 - Protecting Against SQLi in Real-Time - Stuart Hancock - Presentation Slides here
2011-Q4 - How Not to Build Android Apps - Jack Mannino - Presentation Slides here
2011-Q4 - Behind Enemy Lines: Practical & Triage Approaches to Mobile Security Abroad - Justin Morehouse - Presentation Slides here
2011-Q3 - Hiding in Plain Sight - Ramece Cave - Presentation Slides here
2011-Q3 - PCI Compliance 2.0 - Kate Mullin - Presentation Slides here
OWASP Tampa Day 2011 - PCI for Developers: Lessons from the Real World - Trevor Hawthorn - Presentation Slides here
OWASP Tampa Day 2011 - Top Website Vulnerabilities: Trends, Business Effects and How to Fight Them - Rinaldi Rampen - Presentation Slides here
OWASP Tampa Day 2011 - How to Defend the Universe from Evil-doers: A Guide for Software Developers and Security Teams - Bruce Jenkins - Presentation Slides here
OWASP Tampa Day 2011 - Analysis of Deadly Combination of XSS and CSRF - Sherif Koussa - Presentation Slides here
2011-Q1 - Real Lessons of Deploying Static Analysis in Development Groups - Jeff LoSapio - Presentation Slides here
2011-Q1 - Intelligence Gathering for Penetration Testers: Opening Doors with Metadata - Chris Patten - Presentation Slides here
2011-Q1 - Vulnerability Management in an IPv6 World - Richard Newman & Brett McKinney - Presentation Slides here
2010-Q4 - Nessus Bridge for Metasploit - Zate Berg - Presentation Slides here
2010-Q2 - Stealing Guests…The VMware Way - Justin Morehouse & Tony Flick - Presentation slides here
2010-Q1 - The New World of Smartphone Security - Trevor Hawthorn - Presentation slides here
2009-Q3 - Hacking the Smart Grid - Tony Flick - Presentation slides here
2009-Q2 - Open SAMM - Zate Berg - Presentation slides here
2009-Q1 - XSS Anonymous Browser - Matt Flick - Presentation slides here
2008-Q4 - Google Code Search : The pitfalls of Copy/Paste - Tony Flick - Presentation slides here