Many thanks to AppSec California 2020 for publishing their outstanding AppSecCali 2020 Conference Videos. Enjoy!

Big News in the Threat Modeling racket: OWASP has released version 1.0 of it's highly awaited threat modeling platform as a free, open source and cross-platform tool. Monikered OWASP Threat Dragon, installers have been built, the rule engine is in-place, integration with other tools is live and an ostensibly well-crafted UX comes with the package; Threat Dragon is available in two forms - a web version and desktop bits. Download the desktop via GitHub; let the modeling commence!

Behold: An OWASP Threat Dragon Diagramming UX

Amir Luckach is the Endpoint Security Team Leader ay CyberArk

Amichai Shulman ia a Cyber Security Researcher, Entrepreneur and Investor & Yuval Ron is a Masters Student (PSAGOT Program) at the Technion - Israel Institute of Technology

Eugene Rojavski is a Application Security Researcher at Checkmarx

Jayesh Singh Chauhan is a Security Professional with 7+ Years of Experience in the Security Space.

Nancy Gariché is a Co-Founder at Secure That Cert, and Tanya Janca is a Senior Cloud Advocate at Microsoft Corporation

Sasha Rosenbaum is a Azure DevOps Program Manager at Microsoft Corporation

Tash Norris is a Senior Cloud Security Engineer and AppSec Lead at Photobox Group

Asher Genachowski is a Security Senior Principal, Cyber Readiness & Audit Lead at Accenture and Chen Cohen is a Linux Cyber Security Consultant at Accenture

Shiri Ivtsan is a Cloud Solutions Architect and Product Manager at WhiteSource

Isaiah Sarju is a Co-Owner of Revis Solutions

Sujatha Yakasiri is a Senior Computer Scientist at EdgeVerve Systems Limited

Izar Tarandach is a Lead Product Security Architect at Autodesk

Astha Singhal is the Application Security Team Lead at Netflix

Matteo Meucci is the CEO and Co-Founder of Minded Security

AppSecCali 2020 - Samy Kamkar's 'Closing Keynote: Browser Manipulation For Bypassing Firewalls'' →

AppSecCali 2020 - Taiye Lambo's 'Friday Opening Keynote: Attribution' →

AppSecCali 2020 - Eva Galperin's 'Thursday Closing Keynote' →

AppSecCali 2020 Alex Stamos' 'Opening Keynote' →

AppSecCali 2020 - Richard Greenberg's Thursday Welcome Address →

Threat Modeling Application Released By OWASP: Threat Dragon 1.0

OWASP Appsec Tel Aviv 2019, Amir Luckach's 'NoSQL Web Application Vulnerabilities And Mitigation' →

OWASP Appsec Tel Aviv 2019, Amichai Shulman's & Yuval Ron's 'Alexa and Cortana in Windowsland': Hacking An Innovative Partnership And Other Adventures' →

OWASP Appsec Tel Aviv 2019, Eugene Rojavski's Struts 2 Must Die: The Life And Inevitable Death Of Java’s Spaghettiest™ Framework' →

OWASP Appsec Tel Aviv 2019, Jayesh Singh Chauhan's 'Defending Cloud Infrastructures With Cloud Security Suite' →

OWASP Appsec Tel Aviv 2019, Nancy Garche's & Tanya Janca's 'DevSecOps With OWASP Devslop' →

OWASP Appsec Tel Aviv 2019, Sasha Rosenbaum's 'Can We Automate Security?' →

OWASP Appsec Tel Aviv 2019, Tash Norris' 'Are We Making Our Engineers Blue?' →

OWASP Appsec Tel Aviv 2019, Asher Genachowski's & Chen Cohen's 'Breaking Out Of The Container Without Zero Day – Can That Happen To Me?' →

OWASP Appsec Tel Aviv 2019, Shiri Ivstan's 'Looking Towards The Future Of Open Source Vulnerability Management' →

OWASP Appsec Tel Aviv 2019, Isaiah Sarju's 'How Online Dating Made Me Better At Threat Modeling' →

OWASP Appsec Tel Aviv 2019, Sujatha Yakasiri's 'Docker Security Insights' →

OWASP Appsec Tel Aviv 2019, Izar Tarandach's 'What Do You Mean Threat Model Every Story' →

OWASP Appsec Tel Aviv 2019, Astha Singhal's 'The Evolving Community Of Appsec' →

OWASP Appsec Tel Aviv 2019, Matteo Meucci's 'Software Security War: Your Reports Are Dead!' →