OWASP Bristol, UK

Welcome to OWASP Bristol Chapter

The OWASP Bristol Chapter is run by Katy Anton, Craig Francis and Jon Gadsden.

We are a bunch of friendly people interested in Application Security, and we are interested in every flavour of security.

Social media

Speaking at OWASP Bristol Chapter Events

Call For Speakers is open - if you would like to present a talk on Application Security at future OWASP Bristol Chapter events - please review and agree with the OWASP Speaker Agreement and send the proposed talk title, abstract and speaker bio to: Katy Anton / Katy Anton @Infosec Exchange

All types of talks and presentations are welcome, such as:

  • Short / lightning talks, approximately 10 minutes on a specific subject
  • Longer talks between 30 and 45 minutes
  • Wider ranging presentation or tutorials up to an hour long

Chapter Meetings

Please see the Meetup page for the schedule and to register for meetings. Typically our meetings are held in the evening and last for a couple of hours.

Check our Upcoming Meetup Events

Meeting Supporters

Here is the list of organisations who have generously provided us with space for our OWASP Bristol chapter meetings:

  • ImmersiveLabs
  • RBS
  • GreshamTechnologies
  • JustEat
  • Ovo
  • HargreavesLansdown

For the next scheduled events, pleave visit the Meetup page.

Past Events

Below is a list of the previous events details

2023

  • 2023-11-28:
    • Talk: Integrating Threat Modeling into the SDLC, Rob Fewster - video slides
  • 2023-10-17:
    • Talk 1: Secure by Design and by Default, Chris Goff - video
    • Talk 2: Exploring Security, Dan Billing - video
    • Update: ZAP and the Software Security Project, Jon Gadsden - video slides
  • 2023-06-15:
    • Talk 1: LLM and Application Security, Chris Wood
    • Talk 2: An Introduction to scripting for Application Testers, Alex Archondakis - slides

2020

2019

  • 2019-11-14:
    • Talk 1: Least-privilege principle of container security, Ben Meier - video
    • Talk 2: OWASP Threat Dragon: Cupcake to the rescue, Jon Gadsden - video slides
  • 2019-09-12:
    • Talk 1: Hacking into Developers’ Security Consciousness, Andra Lezza
    • Talk 2: Stranger Danger: Finding Security Vulnerabilities Before They Find You!, Siobhan Meier
  • 2019-07-07:
    • Talk 1: autom8on’s infamous stalking talk, Steve Wilson
    • Talk 2: Exploits with Scratch, Kevin Sheldrake
  • 2019-06-06:
    • Talk: Cracking HiTag2 Crypto - Weaponising Academic Attacks for Breaking and Entering, Kev Sheldrake
  • 2019-01-09: “Capture The Flag (CTF) Evening”

2018

2017

  • 2017-11-30:
    • Talk 1: Can DevSecOps Prevent the Impending Software Apocalypse?, Jeff Williams
    • Talk 2: Cookie Security - Myths and Misconceptions, David Johansson
  • 2017-11-23:
    • Talk 1: A Corporate Phishing Trip, Iain Baughen
    • Talk 2: Modern Access Management, Jonathan Scudder
  • 2017-09-28:
    • Talk 1: Website hacking, Craig Francis
    • Talk 2: Threat Modeling, Jon Gadsden - slides
  • 2017-06-22:
    • Talk 1: IoT, Ramesh Krishnasagar
    • Talk 2: Securing financial APIs, Dave Tonge
  • 2017-04-20:
    • Talk: The path of secure software, Katy Anton
  • 2017-03-09:
    • Talk: OWASP Top 10 Proactive Controls

2016

  • 2016-11-17:
    • Talk: Embedded Systems or - the Unwitting Accomplice, Jamie Riden
  • 2016-09-15:
    • Talk: How to test your software for security, Matteo Meucci
  • 2016-07-21:
    • Talk 1: OT is not IT, Vitor Jesus
    • Talk 2: Car hacking, Ken Munro
  • 2016-05-20:
    • Workshop: “Threat Modelling”
  • 2016-03-17:
    • Talk 1: New Era of Software with modern Application Security, Dinis Cruz
    • Talk 2: Android app security on a shoestring budget, Scott Alexander-­Bown
  • 2016-01-21:
    • Talk 1: Don’t Panic - Maintain Security in Continuous Deployments, Chris Dare
    • Talk 2: New Adventures in Security Testing, Dan Billing

2015

  • 2015-11-19:
    • Talk 1: Devops & Continuous Delivery Security, Jason Alexander
    • Talk 2: Dip Your Toes in the Sea of Security, James Titcumb
  • 2015-07-02