OWASP Frankfurt

Introduction

Welcome to the OWASP Frankfurt Chapter, your regional city chapter within OWASP Germany. Located in the heart of Germany’s financial hub, our chapter serves as a nexus for security professionals, AppSec enthusiasts, and experts alike. Our growing community fosters knowledge sharing, professional networking and discussions in the ever-evolving landscape of cybersecurity.

Whether you’re a seasoned cybersecurity practitioner, a developer, a consultant, or someone simply curious about software and application security, OWASP Frankfurt Chapter offers a platform for learning and networking. Through a variety of events and initiatives, we strive to create an inclusive environment where everyone can contribute, learn, and grow.

Events

We are running regular Chapter meetings every 2-3 months, mostly in-person at different venues in Frankfurt am Main.

All individuals with an interest and enthusiasm for application security are warmly welcome. Our meetings are free and open to all, regardless of OWASP membership status. All our resources are accessible under free and open software licenses.

Feel free to refer colleagues or acquaintances to our website or individual meetings. We encourage sharing our resources to expand awareness and engagement within the community.

Upcoming events

All our events are announced through our OWASP Frankfurt Chapter Meetup Group. Stay informed about upcoming chapter events by joining our Meetup group or checking out the Upcoming Events page.

Agenda

Join us for food, drinks, and to socialize and understand what OWASP is all about. You’ll receive updates on the latest OWASP news, including updates on flagship projects, upcoming events, and conferences.

Typically, we feature 2-3 guest speakers covering a range of topics including information security, cloud security, AI/ML security, and overall software security. Companies hosting our meetups have the opportunity to introduce themselves to the audience. Before and after the presentations, attendees have ample opportunities to network and engage in discussions.

Past events

You can access slides from past presentations at our chapter meetings and Stammtisch events at Past Events. Additionally, recordings of virtual meetups are available on the same page for viewing.

Interested in speaking at our events?

We welcome speakers of all levels! You don’t need to be a talk pro or seasoned professional to present at one of our events. However, we do request that your talk be relevant to a software security domain and offer value to attendees. To become a speaker, please review the OWASP Speaker Agreement and then reach out to our chapter leads with details of your presentation. You can also easily submit your proposed talk directly via Papercall.io.

Please note that vendor pitches are not allowed, so please adhere to the OWASP Speaker Agreement and avoid marketing stunts. Also please ensure to remove your company logos from all but one “marketing” slide.

Frankfurt Chapter

The OWASP Stammtisch Frankfurt was formed in 2011 by Johannes Schönborn. More than 50 speakers have sinces presented at the in-person or virtual events. In 2022 the Stammtisch became an official OWASP Chapter.

Get involved

The Open Worldwide Application Security Project (OWASP) is a nonprofit foundation that works to improve the security of software. All of our projects, tools, documents, forums, and chapters are free and open to anyone interested in improving application security.

Chapters are led by local leaders in accordance with the Chapters Policy. Financial contributions should only be made online using the authorized online donation button.

Everyone is welcome and encouraged to participate in our [Projects(https://owasp.org/projects/)], Local Chapters, Events, and Community Slack Channel. We especially encourage diversity in all our initiatives. OWASP is a fantastic place to learn about application security, to network, and even to build your reputation as an expert. We also encourage you to be become a member or consider a donation to support our ongoing work.

Next Events

OWASP Frankfurt Chapter upcoming events can be found on Meetup: OWASP Frankfurt Chapter Meetup

Please follow OWASP Frankfurt on Meetup or join the OWASP Germany Mailing List to be notified as soon as the next event date & location is announced!

Call for Venues

We are looking for upcoming venues to host our OWASP Frankfurt Chapter, preferably in a central location in Frankfurt City which can host around 40-70 attendees.

Call for Speakers

We are always looking for presentations for the OWASP Frankfurt Chapter Events! If you’d like to give a presentation, conduct a training workshop or volunteer for us, contact us the OWASP Frankfurt Chapter organisation. Or easily submit a CFP via Papercall.io: https://www.papercall.io/owasp-chapter-frankfurt

Previous Events

An overview of our past Frankfurt Chapter & Stammtisch events starting in 2011 - present.

2024

65. OWASP Frankfurt | 24.04.2024, 18:00h CEST

  • Talk: Igor Podebrad - Data Centricity for Cloud and Application Security SLIDES
  • Location: In-Person - codecentric AG, Lise-Meitner-Straße 4

64. OWASP Frankfurt | 28.02.2024, 18:00h CET

  • Talk: Esra Yildiz - SecOps Evolution: Navigating Security Risks and Operational Changes in the Era of Cloud SLIDES
  • Talk: Alexander Steinbrecher - ChatGPT as a CoPilot in Security Operations SLIDES
  • Location: In-Person - DZ BANK AG, Platz d. Republik

2023

63. OWASP Frankfurt | 29.11.2023, 18:00h CET

  • Talk: Javan Rasokat - The Dark Side Of Large Language Models: Uncovering And Overcoming Of Code Vulnerabilities SLIDES
  • Talk: Niklas Bunzel, Raphael Antonius Frick - Seeing is Not Always Believing: The Rise, Detection, and Evasion of Deepfakes SLIDES
  • Location: In-Person - CHECK24 Frankfurt, Speicherstraße 55

62. OWASP Frankfurt | 21.09.2023, 17:30h CET

  • Talk: Jasmin Mair - My CI/CD pipeline contains all security tools available! Now what…? SLIDES
  • Talk: Nicolas Schickert & Tobias Hamann - SAP from an Attacker’s Perspective – Common Vulnerabilities and Pitfalls SLIDES
  • Location: In-Person - codecentric AG, Lise-Meitner-Straße 4

61. OWASP Frankfurt | 19.07.2023, 18:00h CET

  • Talk: Firat Acar - This Is Fine – Red Team Edition SLIDES
  • Talk: Vanessa Barnekow - Does security always have to be expensive? Security Quick Wins in the Microsoft Windows environment SLIDES
  • Location: In-Person - NVISO GmbH, Holzgraben 5

60. OWASP Frankfurt | 26.04.2023, 18:00h CET

  • Talk: Diana Waithanji - AI-Enhanced Application Security: A Modern Approach SLIDES
  • Talk: Jiska Classen - Beyond the Checkbox: Breaking out of Testing Frameworks SLIDES
  • Location: In-Person - CHECK24 Frankfurt, Speicherstraße 55

59. OWASP Frankfurt | 22.02.2023, 18:00h CET

  • Keynote: Dr. Steffen Schilke - IT Grundschutz and SBOM Implementation in Multi-Country eGov/eJustice Projects SLIDES
  • Talk: Silvia Gutierrez Puertas - OWASP Mentoring Program SLIDES
  • Location: Virtual - OWASP Zoom

2022

58. OWASP Frankfurt | 30.11.2022, 18:00h CET

  • Keynote: Thomas Schmidt - Vulnerability Management with CSAF - why SBOM is not enough SLIDES
  • Talk: Thomas Krabs - Why Security Keep Failing - A battle story SLIDES
  • Talk: Julian Wiegmann - Identity Crisis - Multi Cloud IAM SLIDES
  • Location: In-Person - Deutsche Börse Group AG, Börsenplatz 4

57. OWASP Frankfurt | 26.10.2022, 18:00h CET

  • Keynote: Gregor Reimling - Azure Cloud Security Best Practices SLIDES
  • Talk: Christian Klünter - How to DevSecOps in the context of public sector and small to medium sized enterprises SLIDES
  • Location: In-Person - CHECK24 Frankfurt, Speicherstraße 55

56. OWASP Frankfurt #56 & Kassel Security 0x4C Collective Event (Virtual) | 24.08.2022, 18:00h CET

  • Keynote: Niklas Düster - Operationalizing Software Bill of Materials (SBOM) with CycloneDX and Dependency-Track SLIDES
  • Talk: Prof. Nick Nikiforakis & Brian Kondracki - Catching Transparent Phish: Understanding and Detecting MITM Phishing Kits SLIDES
  • Talk: Dagmawi Mulugeta - Abusing cloud apps 101: Command and Control SLIDES
  • Location: Virtual - OWASP Zoom

55. OWASP Frankfurt Chapter Meetup (In-Person) | 25.06.2022, 18:00h CET

  • Keynote: Dan Gora - Secrets Management with OWASP WrongSecrets KEYNOTE SLIDES
  • Talk: Nicole Rother - The Forensic Hunt for Malware Campaigns of Cyber Criminals
  • Talk: Jonas Becker - A pragmatic approach to threat modeling SLIDES
  • Location: BEEHIVE Frankfurt City, Mainzer Landstraße 33a

54. OWASP Frankfurt Chapter Meetup (Virtual) | 25.05.2022, 18:00h CET

  • Keynote: Thomas Naunheim - Defending Azure Active Directory KEYNOTE SLIDES
  • Talk: Matthias Altmann - Introduction to CSRF attacks
  • Location: Virtual - OWASP Zoom

53. OWASP Frankfurt Chapter Meetup (Virtual) | 27.04.2022, 18:00h CET

  • Talk: Johannes Schönborn - OWASP Introduction and OWASP projects overview
  • Talk: Kevin Ott - Advanced Offensive Security
  • Talk: Mihael Stanojevic - Security Culture
  • Location: BEEHIVE Frankfurt City, Mainzer Landstraße 33a

2021

52. OWASP Stammtisch Frankfurt (Virtual) | 24.11.2021, 19:00h CET

  • Keynote: Jim Manico - OWASP Top 10 2021 Release KEYNOTE INFO
  • Location: Virtual - OWASP Zoom

51. OWASP Stammtisch Frankfurt (Virtual) | 27.10.2021, 19:00h CET

  • Keynote: Christian Schneider - Agile Threat Modeling using Open Source Tools - KEYNOTE SLIDES
  • Talk: Johannes Schönborn - Counterintelligence in Red Teaming using MITRE ENGAGE - TALK SLIDES
  • Talk: Aaron Rinehart - A Primer on Security Chaos Engineering by Aaron Rinehart
  • Recording (Full): YOUTUBE
  • Location: Virtual - OWASP Zoom

50. OWASP Stammtisch Frankfurt (Virtual) | 25.08.2021, 18:30h CET

  • Keynote: Felix Kosterhon - Vulnerability Research of Linux Audit Framework (auditd) and CVE-2020-35501 KEYNOTE SLIDES
  • Talk: Matthias Altmann - Malicious Code Injection via DOM Clobbering Technique - TALK SLIDES
  • Talk: Calvin Hansch - Comparing Windows Host Auditing Tools for Pentests by Calvin Hansch CET - TALK SLIDES
  • Recording (Full): YOUTUBE
  • Location: Virtual - OWASP Zoom

49. OWASP Stammtisch Frankfurt (Virtual) | 28.07.2021, 18:30h CET

  • Keynote: Rory McCune - Container Orchestration Security
  • Keynote Recording (Part 1): YOUTUBE
  • Talk: Kyle Cucci - Malware Analysis to Drive Threat Hunting & Detection Engineerin. TALK SLIDES
  • Talk Recording (Part 2): YOUTUBE
  • Location: Virtual - OWASP Zoom

48. OWASP Stammtisch Frankfurt (Virtual) | 28.04.2021, 18:00h CET

  • Keynote: Timo Pagel - Overview of OWASP (DevSecOps) project KEYNOTE SLIDES
  • Workshop: Daniel Gora - Hands-On Introduction to OWASP Juice Shop
  • Lightning Talk: Mihael Stanojevic - Physical Red Teaming LIGHNTING TALK SLIDES
  • Recording: YOUTUBE
  • Location: Virtual - OWASP Zoom

47. OWASP Stammtisch Frankfurt (Virtual) | 24.02.2021, 18:00h CET

  • Keynote: Kevin Ott - Emulating Supply Chain Attacks with Open Source Tools
  • Talk: Marius Klimmek - My Journey from Red to Purple Teaming
  • Slides: PRESENTATION DECK
  • Workshop: with Artur Stöber - Hands-On Hacking with VulnHub
  • Recording: YOUTUBE
  • Location: Virtual - GoToMeeting

2019

46. OWASP Stammtisch Frankfurt | 23.10.2019

  • Talk: Reversing a Cobalt Strike Beacon
  • Location: Capri by Fraser (Europa-Allee 42, Frankfurt)

45. OWASP Stammtisch Frankfurt | 14.08.2019

  • Talk: Let’s hack! - An intro to Cobalt Strike
  • Location: Capri by Fraser (Europa-Allee 42, Frankfurt)

44. OWASP Stammtisch Frankfurt | 27.02.2019, 19:30h CET

  • Talk: My favourite BBQ: Kerberoasting
  • Slides: PRESENTATION DECK
  • Recording: YOUTUBE
  • Location: Exploit Labs will host us as Hotel Capri by Fraser (Europa-Allee 42, Frankfurt)

2018

43. OWASP Stammtisch Frankfurt | 07.11.2018, 19:30h CET

  • Keynote: Jim Manico - Introduction to OWASP and Application Security Verification Standard 4.0
  • Slides: PRESENTATION DECK
  • Talk: Daniel Gora - Gamification of Application Security with OWASP Cornucopia
  • Slides: PRESENTATION DECK
  • Talk: Cedric Klosa - My Ethical Hacking Success Story with HackTheBox.eu
  • Location: Exploit Labs will host us as Hotel Capri by Fraser (Europa-Allee 42, Frankfurt)

42. OWASP Stammtisch Frankfurt | 05.09.2018, 19:30h CET

  • Talk: Johannes Schönborn - Getting Started with Ethical Hacking w/a Mentor
  • Slides: PRESENTATION DECK
  • Location: Blue Frost Security will once more host us at Hotel Capri

41. OWASP Stammtisch Frankfurt | 30.05.2018, 19:30h CET

  • Talk: Michael Ritter - Active Directory Hacking
  • Slides: PRESENTATION DECK
  • Location: Blue Frost Security will once more host us at Hotel Capri

40. OWASP Stammtisch Frankfurt | 28.03.2018, 19:30h CET

  • Talk: Kevin Ott - GoLang for Pentesting/Red Teaming
  • Slides: PRESENTATION DECK
  • Location: Blue Frost Security will once more host us at Hotel Capri

39. OWASP Stammtisch Frankfurt | 30.01.2018, 19:30h CET

  • Talk: Sebastian Haas - Fun with Bashbunny
  • Slides: PRESENTATION DECK
  • Location: Blue Frost Security will once more host us at Hotel Capri

2017

38. OWASP Stammtisch Frankfurt | 29.11.2017, 19:30h CET

  • Talk: Johannes Schönborn - Pentest vs. Red Team
  • Location: Blue Frost Security will once more host us at Hotel Capri!

37. OWASP Stammtisch Frankfurt | 20.9.2017, 19:30h CET

  • Talk: Johannes Schönborn - Introduction to OWASP
  • Slides: PRESENTATION DECK
  • Location: Blue Frost Security will once more host us at Hotel Capri!

36. OWASP Stammtisch Frankfurt | 26.7.2017, 19:30h CET

  • Talk: Christoph - A closer look at Bionic - a software quality assessment and security analysis of Android’s foundation
  • Slides: PRESENTATION DECK
  • Location: Blue Frost Security will once more host us at Hotel Capri!

35. OWASP Stammtisch Frankfurt | 31.5.2017, 19:30h CET

  • Talk: Privilege Escalation with strace and PowerShell
  • Location: Blue Frost Security will once more host us at Hotel Capri!

34. OWASP Stammtisch Frankfurt | 29.3.2017, 19:30h CET

  • Talk: Hack of Disconnected Object”, “Look Mom, I don’t use Shellcode!
  • Location: Blue Frost Security will once more host us at Hotel Capri!

33. OWASP Stammtisch Frankfurt | 25.01.2017, 19:30h CET

  • Talk: Per Thorsheim on Passwords
  • Location: Blue Frost Security will once more host us at Hotel Capri!

2016

32. OWASP Stammtisch Frankfurt | 24.11.2016, 19:30h CET

  • Talk: Mobile Application Pentesting mit ein paar Anekdoten
  • Location: Exploit Labs, Friedrich-Ebert-Anlage 36, Frankfurt am Main

31. OWASP Stammtisch Frankfurt | 27.10.2016, 19:30h CET

  • Talk: Eine Einführung: Angriffserkennung mit SIEM (Kathi)
  • Location: Exploit Labs, Friedrich-Ebert-Anlage 36, Frankfurt am Main

30. OWASP Stammtisch Frankfurt | 29.09.2016, 19:30h CET

  • Talk: Community Live Hacking “your fav. challenge”
  • Location: DZ BANK AG, Mainzer Landstraße 58, 60325 Frankfurt am Main

29. OWASP Stammtisch Frankfurt | 30.06.2016, 19:30h CET

  • Talk: Google-Hacking mit Florian Ammon
  • Location: DZ BANK AG, Mainzer Landstraße 58, 60325 Frankfurt am Main

28. OWASP Stammtisch Frankfurt | 30.06.2016, 19:30h CET

  • Talk: Community Live Hacking OWASP Juiceshop
  • Location: DZ BANK AG, Mainzer Landstraße 58, 60325 Frankfurt am Main

27. OWASP Stammtisch Frankfurt | 19.05.2016, 19:30h CET

  • Talk: Olaf Bormann - Anforderungen an das Application Security Management - Von der Anforderung bis zur Außerbetriebnahme
  • Location: DZ BANK AG, Mainzer Landstraße 58, 60325 Frankfurt am Main

26. OWASP Stammtisch Frankfurt | 28.04.2016, 19:30h CET

  • Talk: Christian - DevOps & CI
  • Location: DZ BANK AG, Mainzer Landstraße 58, 60325 Frankfurt am Main

25. OWASP Stammtisch Frankfurt | 31.03.2016, 19:30h CET

  • Talk: Johannes Schönborn, Manuel Giesel - 1x1 Threat Intelligence
  • Location: DZ BANK AG, Mainzer Landstraße 58, 60325 Frankfurt am Main

24. OWASP Stammtisch Frankfurt | 25.02.2016, 19:30h CET

  • Talk: Boban Krsic - IT-Sicherheitsgesetz - und nun?”
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

2015

23. OWASP Stammtisch Frankfurt | 28.01.2015, 19:30h CET

  • Talk: Christoph - Social Engineering
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

22. OWASP Stammtisch Frankfurt | 26.11.2015, 19:30h CET

  • Talk: Johannes Schönborn - “Faraday: Pentesting goes Multiplayer”
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

21. OWASP Stammtisch Frankfurt | 29.10.2015, 19:30h CET

  • Talk: Khalil Bijjou - Web Application Firewall Bypassing - how to defeat the blue team
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

20. OWASP Stammtisch Frankfurt | 24.09.2015, 19:30h CET

  • Talk: Jan Philipp - “Security Challenges of Cloud Providers” - “Wie baue ich sichere Luftschlösser in den Wolken”)
  • Slides: PRESENTATION DECK
  • Location: Franklinstraße 50, 60486 Frankfurt am Main

19. OWASP Stammtisch Frankfurt | 27.08.2015, 19:30h CET

  • Talk: Manuel Giesel und Johannes Schönborn - “Lust und Frust bei der Netzwerk-Anomalieerkennung
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

18. OWASP Stammtisch Frankfurt | 30.07.2015, 19:30h CET

  • Talk: Katharine Brylski - Ein Best-of-Konzept für Sicherheitsanalysen von Webanwendungen
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

17. OWASP Stammtisch Frankfurt | 25.06.2015, 19:30h CET

  • Talk: Alexios Fakos - (Un)Sicherheit bei ihrer Applikation? Präventiv statt reaktiv
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

16. OWASP Stammtisch Frankfurt | 28.05.2015, 19:30h CET

  • Talk: Marius Klimmek - Sowas wie Botnetze – Die dunkle Gefahr der Zombie Armee
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

15. OWASP Stammtisch Frankfurt | 30.04.2015, 19:30h CET

  • Talk: Daniel Zelle - Einführung und Überblick - Von Car2X- bis In-Vehicel-Security
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

14. OWASP Stammtisch Frankfurt | 26.03.2015, 19:30h CET

  • Talk: Michael Ritter - Web Application Firewall Profiling
  • Slides: PRESENTATION DECK
  • Location: Franklinstraße 50, 60486 Frankfurt am Main

13. OWASP Stammtisch Frankfurt | 26.02.2015, 19:30h CET

  • Talk: Alexios Fakos - Polyglotte Angriffsvektoren
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

12. OWASP Stammtisch Frankfurt | 29.01.2015, 19:30h CET

  • Talk: Jan Philipp - SharePoint Sicherheit im ‘schlüpfrigen’ Griff
  • Slides: PRESENTATION DECK
  • Location: Franklinstraße 50, 60486 Frankfurt am Main

2014

11. OWASP Stammtisch Frankfurt | 27.11.2014, 19:30h CET

  • Talk: Johannes Schönborn - APT – the Good, the Bad and the Ugly
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

10. OWASP Stammtisch Frankfurt | 30.10.2014, 19:30h CET

  • Talk: Alexander Klink - Denial of Service auf Applikationsebene
  • Note: Stammtisch Frankfurt feierte sein Comeback!
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

2013

3. Rhein-Main-OWASP-Stammtisch | 27.11.2013 at 19:00

  • Note: Stammtisch took place in the wine bar Wangenrot at Stephansplatz 1 in Mainz

2. Rhein-Main-OWASP-Stammtisch | 26.09.2013 at 19:00h CET

  • Note: The second Rhein Main Stammtisch took place at 19:00 in Frankfurt in Vita Vera.

1. Rhein-Main-OWASP-Stammtisch The Frankfurt OWASP Stammtisch, 25.06.2013 at 19:00h CET

  • Note: renamed in Rhein Main Stammtisch and took place on in Frankfurt.

2012

6. OWASP Stammtisch Frankfurt | 21.11.2012 at 19:00

  • Note: The topic of the Stammtisch was the review of the German OWASP Day 2012 and took place in the Vita Vera

5. OWASP Stammtisch Frankfurt The 5th Frankfurt OWASP

  • Note: Stammtisch took place on 26.09.2012, 18:30 in the Vita Vera. The topic was the exchange about security topics as well as common networking.

2011

4. OWASP Stammtisch Frankfurt The 4th Frankfurt OWASP

  • Note: The fourth OWASP Frankfurt Stammtisch took place on 23.11.2011 at Depot 1899. Bars were tested in which one can hold perhaps also a lecture with following discussion.

3. OWASP Stammtisch Frankfurt The 3rd Frankfurt OWASP

The OWASP Donations Policy states that we as the OWASP Foundation are very grateful for the support by the individuals and organizations listed. However please note, the OWASP Foundation is strictly vendor neutral and does not endorse any of its supporters.

How to become a Sponsor?

OWASP is a non-profit association (in Europe, based in Belgium) that has has set up many projects, documents and tools and thus follows the mission “web security”. Almost all of these visible results are based on a lot of volunteer work.

However, an association like OWASP also has expenses in order to promote projects, documents and tools and to keep them up to date. Our infrastructure like servers, accounting and our administration also need to be paid for.

OWASP finances the projects and its organization through sponsorships as well as entrance fees from events. A sponsor supports the work of OWASP sustainably.

You have two options - both of which you can use in parallel - to support OWASP:

Please take particular note of the OWASP Donations Policy.

Watch Star