I'm sure this blogpost will be interesting to the two or three other people people in the world who are using Claude Code on Windows and want to have multiple accounts active :)
Keen to hear feedback and experiences ๐
I'm sure this blogpost will be interesting to the two or three other people people in the world who are using Claude Code on Windows and want to have multiple accounts active :)
Keen to hear feedback and experiences ๐
Starting off the year with the uno reverse card ๐คฃ๐คฃ๐คฃ
Register:
owasp.glueup.com/eve...
More details:
owasp.glueup.com/eve...
www.bouncesecurity.c...
LONDON, BABY!
I'm bringing my course "Building a High-Value AppSec Scanning Programme" to London as part of @OWASP's London training days, 23-24 February 2026.
As seen at OWASP Global conferences, @BlackHatEvents and @NDC_Conferences, don't miss your chance to attend!
#justaithings
CFTs for both @BlackHatEvents #BHUSA and @OWASP Global AppSec EU (Vienna) are now open and close in early December!
Thinking of submitting? Check out my blog series for @BounceSecurity "So you want to train at Black Hat (or other conferences)?"
If you attended my vibe coding session at the @OWASP Community at @defcon (or you didn't but you are interested) and you want to continue the conversation, Emile Delcourt opened a dedicated channel on the @OWASP slack workspace:
owasp.slack.com/arch...
I can't bring myself to tag everyone but thanks to everyone I met and chatted to, every one of you enhanced the experience.
For those of you working as volunteers and organisers, you are the ones who make all of this happen and you have my undying respect and appreciation!
4) Getting to switch things down a gear at the annual one-of-a-kind ShabbatCon with great conversations and the famous "no-fire" talks.
5) Crazy golf at the Chainguard/Orca party with Avi and Kim, I do love crazy golf!
3a) Volunteering for the OWASP Community space at DEFCON to talk to people about the foundation and collect donations in exchange for t-shirts.
3b) Delivering a "What is OWASP" talk for the community space as well as leading a packed discussion about AppSec and vibe coding.
1) Delivering another round of my training course about accelerating your AppSec programme.
2) Meeting loads of people at Black Hat, some intentionally and some by happy coincidence and building connections.
About to head home after a packed week+ in Vegas for Hacker Summer Camp.
Some highlights for me:
My point is not the content but rather the skillset.If I as a security person don't have those skills then people are going to listen to someone who does
My searing hot take for today is that everyone hitting out at "security influencer" culture might want to consider that being able to persuade and influence is probably the most important tool in your security skillset.
Excited to be back delivering my course again at Black Hat USA!
In "Making your preparations" I discuss some of the preparations you might need in the run-up to the course including materials and visa considerations.
Although visas are one of the last things I mention, it might be one of the first things to consider.
www.bouncesecurity.c...
In "Selling and Marketing your course", I talk about possibly the hardest part of the whole process, getting people to sign-up! I don't have all the answers but hopefully I have some ideas and thoughts that will be useful to you.
www.bouncesecurity.c...
The final two parts of my blog series about delivering training at conferences have now been released!
You can check them out on the @BounceSecurity website now!
Most passkey implementations are tripping over themselves to fall back to sending you an email OTP as fast as possible...
Passkeys are for UX, not for security
cornucopia.owasp.org
@sydseter.com is probably one of the local experts :)
Sign-up here:
www.blackhat.com/us-25/traini...
More information about the course:
www.bouncesecurity.com/training/acc...
Pulled last year's class workbook out so that I can prepare the updated version for this year.
You still have time to sign up for my updated course at @blackhatofficial.bsky.social #BHUSA, in person in Las Vegas, August 4-5.
You can find the whole series here:
www.bouncesecurity.c...
So you have a great training course with super-cool interactivity, now you have to get it accepted.
In my next blogpost, I talk about writing a proposal which appeals to both the review board and also your potential attendees.
Check it out here:
www.bouncesecurity.c...
Last week, I was honoured to received a Distinguished Lifetime Member award from OWASP at Global AppSec EU Barcelona 2025.
I wrote more about it here:
www.linkedin.com/pos...
So @ElarLang just published version 5.0.0 of OWASP ASVS, live on stage at @OWASP Global AppSec EU Barcelona 2025!
In October, 2021, we released 4.0.3 of the OWASP ASVS Standard. This release marked the start of the Vanilla Ice (or 5.0 as everyone else called it) release.
A major rethink about how we use the standard and with feedback from the community.
Last week to save before prices go up on 23rd May!
Unless you Accelerate your AppSec Programme, you are going to get left behind..
Join me @blackhatofficial.bsky.social #BHUSA this summer in Las Vegas (4-5 Aug) for a practical guide on how to build bridges with developers and build securely!
Welcome @blackhatofficial.bsky.social ๐
You should probably report this account for impersonation though...
bsky.app/profile/blac...
