Sched.com Conference Mobile Apps
OWASP 2025 Global AppSec EU
OWASP 2025 Global AppSec EU
Sign up
or
log in
to bookmark your favorites and sync them to your phone or calendar.
About
Schedule
Search
Menu
About
Schedule
Search
Event Schedule
My Schedule
0
View
Simple
Expanded
Grid
By Venue
Simple
Expanded
Grid
By Venue
Monday
, May 26
Room 118
9:00am •
3-Day Training: Full-Stack Pentesting Laboratory: 100% Hands-On + Lifetime LAB Access
Room 119
9:00am •
3-Day Training: AI Whiteboard Hacking aka Hands-on Threat Modeling Training
Room 120
9:00am •
3-Day Training: The Mobile Playbook - A guide for iOS and Android App Security
Tuesday
, May 27
Room 118
9:00am •
3-Day Training: Full-Stack Pentesting Laboratory: 100% Hands-On + Lifetime LAB Access
Room 119
9:00am •
3-Day Training: AI Whiteboard Hacking aka Hands-on Threat Modeling Training
Room 120
9:00am •
3-Day Training: The Mobile Playbook - A guide for iOS and Android App Security
Room 121
9:00am •
2-Day Training: Adam Shostack's Threat Modeling Intensive
Room 122
9:00am •
2-Day Training: Application Security Training with Jim Manico
Room 123
9:00am •
2-Day Training: Building a High-Value App Scanning Programme (2025 Update)
Room 124
9:00am •
2-Day Training: AppSec Automation Masterclass
Room 125
9:00am •
2-Day Training: Practical Privacy by Design - Going Beyond Security in your SDLC
Room 127
9:00am •
2-Day Training: Hacking Modern Web Apps: Master the Future of Attack Vectors
Wednesday
, May 28
-
8:15am •
Coffee/Tea
Room 118
9:00am •
3-Day Training: Full-Stack Pentesting Laboratory: 100% Hands-On + Lifetime LAB Access
Room 119
9:00am •
3-Day Training: AI Whiteboard Hacking aka Hands-on Threat Modeling Training
Room 120
9:00am •
3-Day Training: The Mobile Playbook - A guide for iOS and Android App Security
Room 121
9:00am •
2-Day Training: Adam Shostack's Threat Modeling Intensive
Room 122
9:00am •
2-Day Training: Application Security Training with Jim Manico
Room 123
9:00am •
2-Day Training: Building a High-Value App Scanning Programme (2025 Update)
Room 124
9:00am •
2-Day Training: AppSec Automation Masterclass
Room 125
9:00am •
2-Day Training: Practical Privacy by Design - Going Beyond Security in your SDLC
Room 127
9:00am •
2-Day Training: Hacking Modern Web Apps: Master the Future of Attack Vectors
5:30pm •
Global Board of Directors Public Board Meeting
Room 129
9:00am •
1-Day Training: Master AI security
Room 130
9:00am •
1-Day Training:How to build a Successful Security Champions Program
Room 212
7:30pm •
Women in AppSec Reception (registration required)
Room M211-212
9:00am •
SAMM User Day
Room M213-M214
9:00am •
Open WAF Day | CRS & ModSecurity & Coraza
Room M215 - M216
9:00am •
OWASP CycloneDX Hackathon with Transparency Exchange API
Thursday
, May 29
Area 1
8:15am •
Coffee/Tea
10:00am •
AM Break with Exhibitors
3:00pm •
PM Break with Exhibitors
4:30pm •
Networking Reception in Expo Hall
Purobeach Barcelona Rooftop Bar - Located in the Hilton
6:45pm •
Endor Lab's After Party
Room 111
9:00am •
OWASP Member Lounge
Room 113
10:30am •
Leveraging AI for Secure React Development with Effective Prompt Engineering
11:30am •
Hacking Your Enterprise Copilot: A Direct Guide to Indirect Prompt Injections
1:15pm •
Beyond the Surface: Exploring Attacker Persistence Strategies in Kubernetes
2:15pm •
Builders and Breakers: A Collaborative Look at Securing LLM-Integrated Apps
3:30pm •
To BI or Not to BI? Data Leakage Tragedies with Power BI Reports
Room 114
10:30am •
False Positives, Begone! Harnessing AI for Efficient SAST Triage
11:30am •
Emerging Frontiers: Ransomware Attacks in AI Systems
1:15pm •
From Prompt to Protect: LLMs as Next-Gen WAF's
2:15pm •
Living the SBOM life - the good, the bad and the evil parts
3:30pm •
Current challenges of GraphQL security
Room 115
10:30am •
Human Buffer Overflow: How to Deal with Cognitive Load in High-Performing Teams
11:30am •
Your Security Dashboard Is Lying to You: The Science of Metrics
1:15pm •
Against all odds: Kickstarting your Product Security Program when things are not in your favour
2:15pm •
Beyond Best Practices: Uncovering the Organizational Roots of Software Security Vulnerabilities
3:30pm •
Kaizen for your appsec program: Turning big problems into small steps
Room 116+117
9:00am •
Keynote:Nemo Resideo: Managing application security through rapid change
10:30am •
The Edge Strikes Back: Challenging OWASP's Take on Edge-Level Authorization
11:30am •
Securing cross-platform mobile applications
1:15pm •
Mastering Security through Simple Machines: How Consistency, Not Complexity, Drives Innovation
2:15pm •
Friend or Foe? TypeScript Security Fallacies
3:30pm •
Policy as Code for Applications at Scale
Room 118
10:30am •
CfP/CfTs for the Newcomer: How To Write A Good Submission
1:15pm •
Meet the Mentor
Room 119
8:30am •
Speaker Ready Room
Room 131-132
10:30am •
OWASP LCNC Securing the Future: AI Meets Low-Code, the New Security Frontier!
11:00am •
OWASP ModSecurity in Motion: Evolving the Open Source WAF
11:30am •
OWASP Threat Library
1:15pm •
Introducing Sunshine, the all new SBOM visualization tool by OWASP CycloneDX
1:45pm •
OWASP Mobile Application Security (MAS) Project Updates
2:15pm •
OWASP Cumulus: Threat Modeling the Ops of DevOps
2:45pm •
OWASP Coraza in 2025: What next for the WAF you want to use?
3:35pm •
OWASP Domain Protect Project
Room 133-134
10:45am •
OWASP Web Application Honeypot Project - Creating Comprehensive Threat Intelligence Dataset
10:45am •
OWASP Certified Secure Developer Open Call
11:00am •
OWASP Juice Shop Demo: Your vitamin shot for security awareness & education
11:00am •
OWASP KubeFIM Securing Kubernetes from the Inside Out: File Integrity Monitoring with eBPF
1:15pm •
OWASP DefectDojo Demo
1:15pm •
OWASP Cornucopia
2:15pm •
OWASP GenAI Security Project
2:15pm •
OWASP Demo Lab: See CycloneDX SBOMs Come to Life with Sunshine
3:30pm •
Automating OWASP ASVS with OWASP Nuclei: A Hands-On Walkthrough
3:30pm •
Level Up Your AppSec Game: OWASP SAMM's Roadmap to Security Excellence
Friday
, May 30
Area 1
8:15am •
Coffee/Tea
10:00am •
AM Break with Exhibitors
3:00pm •
PM Break with Exhibitors
Room 111
9:00am •
OWASP Member Lounge
Room 113
10:30am •
Doors of (AI)pportunity: The Front and Backdoors of LLMs
11:30am •
Restless Guests: From Subscription to Backdoor Intruder
1:15pm •
Abusing misconfigurations in CI/CD to hijack apps and clouds
2:15pm •
Compromised at the Source: Supply Chain Risks in Open-Source AI
3:30pm •
When Regulation Backfires: How a Vulnerable Plugin Led to an XSS Pandemic
Room 114
10:30am •
Think Before You Prompt: Securing Large Language Models from a Code Perspective
11:30am •
Surviving prioritisation when CVE stands for “Customer Very Enthusiastic"
1:15pm •
Signing is Sassy, but CI/CD Security Pays the Bills
2:15pm •
GenAI Security - Insights and Current Gaps in OS LLM Vulnerability scanners and Guardrails
3:30pm •
Know Thy Judge: Uncovering Vulnerabilities of AI Evaluators
Room 115
10:30am •
LLMs vs. SAST: How AI Delivers Accurate Vulnerability Detection and Reduces False Positives
11:30am •
Security Champion Worst Practices
1:15pm •
Scale Security Programs with Scorecarding
2:15pm •
Metrics That Matter: Driving AppSec Success with Data-Driven Insights
3:30pm •
An AppSec Tale: From Zero to Champions
Room 116+117
9:00am •
Keynote: Outside the Ivory Tower: Connecting Practice and Science
10:30am •
A completely pluggable DevSecOps programme, for free, using community resources
11:30am •
Introducing the 5.0 release of the ASVS
1:15pm •
Scaling Threat Modeling with a Developer-Centric Approach
2:15pm •
Transaction authorization pitfalls – How to improve current financial, payment, and e-commerce apps?
3:30pm •
LLM-Powered private Threat Modeling
4:30pm •
Closing Ceremony and Raffle
Room 118
10:00am •
Bob the Breaker CTF - The Reunion. The No-code/Low-code Hacking Saga Continues.
Room 119
8:30am •
Speaker Ready Room
Room 131-132
10:30am •
Beyond the Rules: The Past, Present, and Future of OWASP CRS
11:00am •
OWASP Nettacker
11:30am •
Navigating Agentic AI Security Risks: OWASP’s GenAI Guidance for Securing Autonomous AI Agents
1:15pm •
OWASP Cornucopia: Scaling secure design & requirement gathering activities
1:45pm •
OWASP Top 10 for Business Logic Abuse
2:15pm •
OWASP Security Champions Guide Project
2:45pm •
OWASP Top 10 for CI/CD Security: Evolution Since the Top 10 Project’s Inception
3:35pm •
OWASP DefectDojo - What's next?
Room 133-134
10:45am •
OWASP KubeFIM Advanced Threat Detection & Security Automation
10:45am •
GenAI Security Project Getting down to business: practical & tactical Project Management
11:00am •
Level Up Your AppSec Game: OWASP SAMM's Roadmap to Security Excellence
11:00am •
OWASP Certified Secure Developer Open Call
1:15pm •
OWASP DefectDojo
1:15pm •
OWASP ASVS Nuclei
2:15pm •
OWASP Juice Shop Demo: Your vitamin shot for security awareness & education
2:15pm •
Let's Play! OWASP Cumulus
Filter By Date
May 26
-
30, 2025
Monday
, May 26
Tuesday
, May 27
Wednesday
, May 28
Thursday
, May 29
Friday
, May 30
Filter By Venue
Centre de Convencions Internacional de Barcelona
All
-
Area 1
Purobeach Barcelona Rooftop Bar - Located in the Hilton
Room 111
Room 113
Room 114
Room 115
Room 116+117
Room 118
Room 119
Room 120
Room 121
Room 122
Room 123
Room 124
Room 125
Room 127
Room 129
Room 130
Room 131-132
Room 133-134
Room 212
Room M211-212
Room M213-M214
Room M215 - M216
Filter By Type
1-Day Training
2-Day Training
3-Day Training
BONUS TRACK
Breakout: Breaker Track
Breakout: Builder Track
Breakout: Defender Track
Breakout: Manager/Culture Track
Breakout: OWASP Project Demo Lab
All
Call for Contributors
Demo
Breakout: OWASP Project Showcase Track
All
Lightning Talk
Closed Meeting
Exhibitor Networking Events & Receptions
Hackathon
Keynote
Meals provided by OWASP
Meeting
Speakers Only
User Day
Company
Wallarm
Audience
Advanced
Beginner
Intermediate
Overview
Subject
CTF
OWASP Project
Recently active attendees
ahmad khasawneh
NQ
Nour Qoul
Roy Bassil
Benjamin Herrero
Luca Capacci
Flavio Kenji Yanai
Rob van der Veer
John Sotiropoulos
See all
Attendees →
Share Modal
Share this link via
Or copy link
Copy
Filter sessions
Apply filters to sessions.
close
Dates
Monday
, May 26
Tuesday
, May 27
Wednesday
, May 28
Thursday
, May 29
Friday
, May 30
Session Type
1-Day Training
2-Day Training
3-Day Training
BONUS TRACK
Breakout: Breaker Track
Breakout: Builder Track
Breakout: Defender Track
Breakout: Manager/Culture Track
Breakout: OWASP Project Demo Lab
All
Call for Contributors
Demo
Breakout: OWASP Project Showcase Track
All
Lightning Talk
Closed Meeting
Exhibitor Networking Events & Receptions
Hackathon
Keynote
Meals provided by OWASP
Meeting
Speakers Only
User Day
Other Filters
Company
Wallarm
Audience
Advanced
Beginner
Intermediate
Overview
Subject
CTF
OWASP Project
