OWASP Frankfurt

Introduction

Welcome to OWASP Frankfurt Chapter, a regional city chapter within OWASP Germany. Our Chapter serves central Germany particular within the Rhine-Main (Hesse) region as a platform to discuss and share topics all around information and application security.

Anyone with an interested and enthusiastic about application security is welcome. All meetings are free and open. You do not have to be an OWASP member.

Referrals to this website or to individual meetings to colleagues or acquaintances are welcome.

Upcoming Events

Check out our Upcoming Events

What’s going to happen?

To be announced via our OWASP Frankfurt Chapter Meetup Group. We usually have a key note and 1-2 (lightning) talks that related to information and application security.

Further Notes

Please join our OWASP Frankfurt Chapter Meetup Group and follow us on Twitter for timely updates on our OWASP Chapter Frankfurt Meetup.

Anyone with an interest in our topics is welcome. All meetings are free and open. You do not have to be an OWASP member to attend. Referrals to this website or to individual meetings to colleagues or acquaintances are welcome.

Information about Frankfurt Chapter Events

When?

We will be running a Chapter Meetup every 2-3 months with the option to have additional events such as hands-on workshops.

Where?

We do run a mix of in-person and virtual meetups. All our upcoming events are announced on Meetup: Meetup and Twitter.

Organization

Call for Speakers and Volunteers

We are looking for presentations for the next OWASP Frankfurt Chapter Events! If you’d like to give a presentation, conduct a training workshop or volunteer for us, contact us the OWASP Frankfurt Chapter organisation .

Etiquette

Please note that vendor pitches are not allowed, so please adhere to the OWASP Speaker Agreement and avoid marketing stunts. Also please ensure to remove your company logos from all but one “marketing” slide.


Next Events

OWASP Frankfurt Chapter upcoming events can be found on Meetup: OWASP Frankfurt Chapter Meetup

Please follow OWASP Frankfurt on Twitter/Meetup or join the OWASP Germany Mailing List to be notified as soon as the next event date & location is announced!

Call for Venues

We are looking for upcoming venues to host our OWASP Frankfurt Chapter, preferably in a central location in Frankfurt City which can host around 40-70 attendees.

Call for Speakers

(🔧 TODO)


Previous Events

An overview of our past Frankfurt Chapter & Stammtisch events from 2011 to 2022.

2022

58. OWASP Frankfurt | 30.11.2022, 18:00h CET

  • Keynote: Thomas Schmidt - Vulnerability Management with CSAF - why SBOM is not enough SLIDES
  • Talk: Thomas Krabs - Why Security Keep Failing - A battle story SLIDES
  • Talk: Julian Wiegmann - Identity Crisis - Multi Cloud IAM SLIDES
  • Location: In-Person - Deutsche Börse Group AG, Börsenplatz 4

57. OWASP Frankfurt | 26.10.2022, 18:00h CET

  • Keynote: Gregor Reimling - Azure Cloud Security Best Practices SLIDES
  • Talk: Christian Klünter - How to DevSecOps in the context of public sector and small to medium sized enterprises SLIDES
  • Location: In-Person - CHECK24 Frankfurt, Speicherstraße 55

56. OWASP Frankfurt #56 & Kassel Security 0x4C Collective Event (Virtual) | 24.08.2022, 18:00h CET

  • Keynote: Niklas Düster - Operationalizing Software Bill of Materials (SBOM) with CycloneDX and Dependency-Track SLIDES
  • Talk: Prof. Nick Nikiforakis & Brian Kondracki - Catching Transparent Phish: Understanding and Detecting MITM Phishing Kits SLIDES
  • Talk: Dagmawi Mulugeta - Abusing cloud apps 101: Command and Control SLIDES
  • Location: Virtual - OWASP Zoom

55. OWASP Frankfurt Chapter Meetup (In-Person) | 25.06.2022, 18:00h CET

  • Keynote: Dan Gora - Secrets Management with OWASP WrongSecrets KEYNOTE SLIDES
  • Talk: Nicole Rother - The Forensic Hunt for Malware Campaigns of Cyber Criminals
  • Talk: Jonas Becker - A pragmatic approach to threat modeling SLIDES
  • Location: BEEHIVE Frankfurt City, Mainzer Landstraße 33a

54. OWASP Frankfurt Chapter Meetup (Virtual) | 25.05.2022, 18:00h CET

  • Keynote: Thomas Naunheim - Defending Azure Active Directory KEYNOTE SLIDES
  • Talk: Matthias Altmann - Introduction to CSRF attacks
  • Location: Virtual - OWASP Zoom

53. OWASP Frankfurt Chapter Meetup (Virtual) | 27.04.2022, 18:00h CET

  • Talk: Johannes Schönborn - OWASP Introduction and OWASP projects overview
  • Talk: Kevin Ott - Advanced Offensive Security
  • Talk: Mihael Stanojevic - Security Culture
  • Location: BEEHIVE Frankfurt City, Mainzer Landstraße 33a

2021

52. OWASP Stammtisch Frankfurt (Virtual) | 24.11.2021, 19:00h CET

  • Keynote: Jim Manico - OWASP Top 10 2021 Release KEYNOTE INFO
  • Location: Virtual - OWASP Zoom

51. OWASP Stammtisch Frankfurt (Virtual) | 27.10.2021, 19:00h CET

  • Keynote: Christian Schneider - Agile Threat Modeling using Open Source Tools - KEYNOTE SLIDES
  • Talk: Johannes Schönborn - Counterintelligence in Red Teaming using MITRE ENGAGE - TALK SLIDES
  • Talk: Aaron Rinehart - A Primer on Security Chaos Engineering by Aaron Rinehart
  • Recording (Full): YOUTUBE
  • Location: Virtual - OWASP Zoom

50. OWASP Stammtisch Frankfurt (Virtual) | 25.08.2021, 18:30h CET

  • Keynote: Felix Kosterhon - Vulnerability Research of Linux Audit Framework (auditd) and CVE-2020-35501 KEYNOTE SLIDES
  • Talk: Matthias Altmann - Malicious Code Injection via DOM Clobbering Technique - TALK SLIDES
  • Talk: Calvin Hansch - Comparing Windows Host Auditing Tools for Pentests by Calvin Hansch CET - TALK SLIDES
  • Recording (Full): YOUTUBE
  • Location: Virtual - OWASP Zoom

49. OWASP Stammtisch Frankfurt (Virtual) | 28.07.2021, 18:30h CET

  • Keynote: Rory McCune - Container Orchestration Security
  • Keynote Recording (Part 1): YOUTUBE
  • Talk: Kyle Cucci - Malware Analysis to Drive Threat Hunting & Detection Engineerin. TALK SLIDES
  • Talk Recording (Part 2): YOUTUBE
  • Location: Virtual - OWASP Zoom

48. OWASP Stammtisch Frankfurt (Virtual) | 28.04.2021, 18:00h CET

  • Keynote: Timo Pagel - Overview of OWASP (DevSecOps) project KEYNOTE SLIDES
  • Workshop: Daniel Gora - Hands-On Introduction to OWASP Juice Shop
  • Lightning Talk: Mihael Stanojevic - Physical Red Teaming LIGHNTING TALK SLIDES
  • Recording: YOUTUBE
  • Location: Virtual - OWASP Zoom

47. OWASP Stammtisch Frankfurt (Virtual) | 24.02.2021, 18:00h CET

  • Keynote: Kevin Ott - Emulating Supply Chain Attacks with Open Source Tools
  • Talk: Marius Klimmek - My Journey from Red to Purple Teaming
  • Slides: PRESENTATION DECK
  • Workshop: with Artur Stöber - Hands-On Hacking with VulnHub
  • Recording: YOUTUBE
  • Location: Virtual - GoToMeeting

2019

46. OWASP Stammtisch Frankfurt | 23.10.2019

  • Talk: Reversing a Cobalt Strike Beacon
  • Location: Capri by Fraser (Europa-Allee 42, Frankfurt)

45. OWASP Stammtisch Frankfurt | 14.08.2019

  • Talk: Let’s hack! - An intro to Cobalt Strike
  • Location: Capri by Fraser (Europa-Allee 42, Frankfurt)

44. OWASP Stammtisch Frankfurt | 27.02.2019, 19:30h CET

  • Talk: My favourite BBQ: Kerberoasting
  • Slides: PRESENTATION DECK
  • Recording: YOUTUBE
  • Location: Exploit Labs will host us as Hotel Capri by Fraser (Europa-Allee 42, Frankfurt)

2018

43. OWASP Stammtisch Frankfurt | 07.11.2018, 19:30h CET

  • Keynote: Jim Manico - Introduction to OWASP and Application Security Verification Standard 4.0
  • Slides: PRESENTATION DECK
  • Talk: Daniel Gora - Gamification of Application Security with OWASP Cornucopia
  • Slides: PRESENTATION DECK
  • Talk: Cedric Klosa - My Ethical Hacking Success Story with HackTheBox.eu
  • Location: Exploit Labs will host us as Hotel Capri by Fraser (Europa-Allee 42, Frankfurt)

42. OWASP Stammtisch Frankfurt | 05.09.2018, 19:30h CET

  • Talk: Johannes Schönborn - Getting Started with Ethical Hacking w/a Mentor
  • Slides: PRESENTATION DECK
  • Location: Blue Frost Security will once more host us at Hotel Capri

41. OWASP Stammtisch Frankfurt | 30.05.2018, 19:30h CET

  • Talk: Michael Ritter - Active Directory Hacking
  • Slides: PRESENTATION DECK
  • Location: Blue Frost Security will once more host us at Hotel Capri

40. OWASP Stammtisch Frankfurt | 28.03.2018, 19:30h CET

  • Talk: Kevin Ott - GoLang for Pentesting/Red Teaming
  • Slides: PRESENTATION DECK
  • Location: Blue Frost Security will once more host us at Hotel Capri

39. OWASP Stammtisch Frankfurt | 30.01.2018, 19:30h CET

  • Talk: Sebastian Haas - Fun with Bashbunny
  • Slides: PRESENTATION DECK
  • Location: Blue Frost Security will once more host us at Hotel Capri

2017

38. OWASP Stammtisch Frankfurt | 29.11.2017, 19:30h CET

  • Talk: Johannes Schönborn - Pentest vs. Red Team
  • Location: Blue Frost Security will once more host us at Hotel Capri!

37. OWASP Stammtisch Frankfurt | 20.9.2017, 19:30h CET

  • Talk: Johannes Schönborn - Introduction to OWASP
  • Slides: PRESENTATION DECK
  • Location: Blue Frost Security will once more host us at Hotel Capri!

36. OWASP Stammtisch Frankfurt | 26.7.2017, 19:30h CET

  • Talk: Christoph - A closer look at Bionic - a software quality assessment and security analysis of Android’s foundation
  • Slides: PRESENTATION DECK
  • Location: Blue Frost Security will once more host us at Hotel Capri!

35. OWASP Stammtisch Frankfurt | 31.5.2017, 19:30h CET

  • Talk: Privilege Escalation with strace and PowerShell
  • Location: Blue Frost Security will once more host us at Hotel Capri!

34. OWASP Stammtisch Frankfurt | 29.3.2017, 19:30h CET

  • Talk: Hack of Disconnected Object”, “Look Mom, I don’t use Shellcode!
  • Location: Blue Frost Security will once more host us at Hotel Capri!

33. OWASP Stammtisch Frankfurt | 25.01.2017, 19:30h CET

  • Talk: Per Thorsheim on Passwords
  • Location: Blue Frost Security will once more host us at Hotel Capri!

2016

32. OWASP Stammtisch Frankfurt | 24.11.2016, 19:30h CET

  • Talk: Mobile Application Pentesting mit ein paar Anekdoten
  • Location: Exploit Labs, Friedrich-Ebert-Anlage 36, Frankfurt am Main

31. OWASP Stammtisch Frankfurt | 27.10.2016, 19:30h CET

  • Talk: Eine Einführung: Angriffserkennung mit SIEM (Kathi)
  • Location: Exploit Labs, Friedrich-Ebert-Anlage 36, Frankfurt am Main

30. OWASP Stammtisch Frankfurt | 29.09.2016, 19:30h CET

  • Talk: Community Live Hacking “your fav. challenge”
  • Location: DZ BANK AG, Mainzer Landstraße 58, 60325 Frankfurt am Main

29. OWASP Stammtisch Frankfurt | 30.06.2016, 19:30h CET

  • Talk: Google-Hacking mit Florian Ammon
  • Location: DZ BANK AG, Mainzer Landstraße 58, 60325 Frankfurt am Main

28. OWASP Stammtisch Frankfurt | 30.06.2016, 19:30h CET

  • Talk: Community Live Hacking OWASP Juiceshop
  • Location: DZ BANK AG, Mainzer Landstraße 58, 60325 Frankfurt am Main

27. OWASP Stammtisch Frankfurt | 19.05.2016, 19:30h CET

  • Talk: Olaf Bormann - Anforderungen an das Application Security Management - Von der Anforderung bis zur Außerbetriebnahme
  • Location: DZ BANK AG, Mainzer Landstraße 58, 60325 Frankfurt am Main

26. OWASP Stammtisch Frankfurt | 28.04.2016, 19:30h CET

  • Talk: Christian - DevOps & CI
  • Location: DZ BANK AG, Mainzer Landstraße 58, 60325 Frankfurt am Main

25. OWASP Stammtisch Frankfurt | 31.03.2016, 19:30h CET

  • Talk: Johannes Schönborn, Manuel Giesel - 1x1 Threat Intelligence
  • Location: DZ BANK AG, Mainzer Landstraße 58, 60325 Frankfurt am Main

24. OWASP Stammtisch Frankfurt | 25.02.2016, 19:30h CET

  • Talk: Boban Krsic - IT-Sicherheitsgesetz - und nun?”
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

2015

23. OWASP Stammtisch Frankfurt | 28.01.2015, 19:30h CET

  • Talk: Christoph - Social Engineering
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

22. OWASP Stammtisch Frankfurt | 26.11.2015, 19:30h CET

  • Talk: Johannes Schönborn - “Faraday: Pentesting goes Multiplayer”
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

21. OWASP Stammtisch Frankfurt | 29.10.2015, 19:30h CET

  • Talk: Khalil Bijjou - Web Application Firewall Bypassing - how to defeat the blue team
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

20. OWASP Stammtisch Frankfurt | 24.09.2015, 19:30h CET

  • Talk: Jan Philipp - “Security Challenges of Cloud Providers” - “Wie baue ich sichere Luftschlösser in den Wolken”)
  • Slides: PRESENTATION DECK
  • Location: Franklinstraße 50, 60486 Frankfurt am Main

19. OWASP Stammtisch Frankfurt | 27.08.2015, 19:30h CET

  • Talk: Manuel Giesel und Johannes Schönborn - “Lust und Frust bei der Netzwerk-Anomalieerkennung
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

18. OWASP Stammtisch Frankfurt | 30.07.2015, 19:30h CET

  • Talk: Katharine Brylski - Ein Best-of-Konzept für Sicherheitsanalysen von Webanwendungen
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

17. OWASP Stammtisch Frankfurt | 25.06.2015, 19:30h CET

  • Talk: Alexios Fakos - (Un)Sicherheit bei ihrer Applikation? Präventiv statt reaktiv
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

16. OWASP Stammtisch Frankfurt | 28.05.2015, 19:30h CET

  • Talk: Marius Klimmek - Sowas wie Botnetze – Die dunkle Gefahr der Zombie Armee
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

15. OWASP Stammtisch Frankfurt | 30.04.2015, 19:30h CET

  • Talk: Daniel Zelle - Einführung und Überblick - Von Car2X- bis In-Vehicel-Security
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

14. OWASP Stammtisch Frankfurt | 26.03.2015, 19:30h CET

  • Talk: Michael Ritter - Web Application Firewall Profiling
  • Slides: PRESENTATION DECK
  • Location: Franklinstraße 50, 60486 Frankfurt am Main

13. OWASP Stammtisch Frankfurt | 26.02.2015, 19:30h CET

  • Talk: Alexios Fakos - Polyglotte Angriffsvektoren
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

12. OWASP Stammtisch Frankfurt | 29.01.2015, 19:30h CET

  • Talk: Jan Philipp - SharePoint Sicherheit im ‘schlüpfrigen’ Griff
  • Slides: PRESENTATION DECK
  • Location: Franklinstraße 50, 60486 Frankfurt am Main

2014

11. OWASP Stammtisch Frankfurt | 27.11.2014, 19:30h CET

  • Talk: Johannes Schönborn - APT – the Good, the Bad and the Ugly
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

10. OWASP Stammtisch Frankfurt | 30.10.2014, 19:30h CET

  • Talk: Alexander Klink - Denial of Service auf Applikationsebene
  • Note: Stammtisch Frankfurt feierte sein Comeback!
  • Slides: PRESENTATION DECK
  • Location: Tower 185, Friedrich-Ebert-Anlage 35-37, 60327 Frankfurt am Main

2013

3. Rhein-Main-OWASP-Stammtisch | 27.11.2013 at 19:00

  • Note: Stammtisch took place in the wine bar Wangenrot at Stephansplatz 1 in Mainz

2. Rhein-Main-OWASP-Stammtisch | 26.09.2013 at 19:00h CET

  • Note: The second Rhein Main Stammtisch took place at 19:00 in Frankfurt in Vita Vera.

1. Rhein-Main-OWASP-Stammtisch The Frankfurt OWASP Stammtisch, 25.06.2013 at 19:00h CET

  • Note: renamed in Rhein Main Stammtisch and took place on in Frankfurt.

2012

6. OWASP Stammtisch Frankfurt | 21.11.2012 at 19:00

  • Note: The topic of the Stammtisch was the review of the German OWASP Day 2012 and took place in the Vita Vera

5. OWASP Stammtisch Frankfurt The 5th Frankfurt OWASP

  • Note: Stammtisch took place on 26.09.2012, 18:30 in the Vita Vera. The topic was the exchange about security topics as well as common networking.

2011

4. OWASP Stammtisch Frankfurt The 4th Frankfurt OWASP

  • Note: The fourth OWASP Frankfurt Stammtisch took place on 23.11.2011 at Depot 1899. Bars were tested in which one can hold perhaps also a lecture with following discussion.

3. OWASP Stammtisch Frankfurt The 3rd Frankfurt OWASP


The OWASP Donations Policy states that we as the OWASP Foundation are very grateful for the support by the individuals and organizations listed. However please note, the OWASP Foundation is strictly vendor neutral and does not endorse any of its supporters.


How to become a Sponsor?

OWASP is a non-profit association (in Europe, based in Belgium) that has has set up many projects, documents and tools and thus follows the mission “web security”. Almost all of these visible results are based on a lot of volunteer work.

However, an association like OWASP also has expenses in order to promote projects, documents and tools and to keep them up to date. Our infrastructure like servers, accounting and our administration also need to be paid for.

OWASP finances the projects and its organization through sponsorships as well as entrance fees from events. A sponsor supports the work of OWASP sustainably.

You have two options - both of which you can use in parallel - to support OWASP:

Please take particular note of the OWASP Donations Policy.