Presentation at Global AppSec AMS

Who is the OWASP Foundation?

The Open Web Application Security Project (OWASP) is a nonprofit foundation that works to improve the security of software. Through community-led open source software projects, hundreds of local chapters worldwide, tens of thousands of members, and leading educational and training conferences, the OWASP Foundation is the source for developers and technologists to secure the web.

  • Tools and Resources
  • Community and Networking
  • Education & Training

For nearly two decades corporations, foundations, developers, and volunteers have supported the OWASP Foundation and its work. Donate, Join, or become a Corporate Member today.

Project Spotlight: Zed Attack Proxy

ZAP Presentation

ZAP is a free, easy to use integrated penetration testing tool which now includes a Heads Up Display. Easily used by security professionals and developers of all skill levels, users can quickly and more easily find security vulnerabilities in their applications. Given the unique and integrated design of the Heads Up Display, developers new to security testing will find ZAP an indispensable tool to build secure software. Learn more about ZAP.

Bay Area Chapter Meeting

Hosted at some of most iconic technology companies in the world, the Bay Area chapter is one of the Foundation’s largest and most active. This month they are hosting a Hacker Day and monthly meetups in San Francisco at Insight Engines and in South Bay at EBay. Usually the agenda includes three provactive and interesting talks, lots of interesting people to meet, and great food. The Bay Area Chapter also participates in planning AppSec California.

Our Website Migration Journey


Mike McCamon, January 15, 2020

For the better part of the last nine months, a small dedicated team has been working to complete a project that has been started, restarted, abandoned, restarted, and then again abandoned: migrating our 7,000 or so page website curated by over 3,000 content editors from MediaWiki to GitHub Pages. As I like to now say, “when you spend 15 years digging a deep hole, don’t expect to dig your way our in a week.” And in all honesty this is not the finish line, but the starting line for the OWASP Foundation in this new decade. more

Recent OWASP News & Opinions

Upcoming Conferences