Dave Troy @davetroy

Tanya Janca | SheHacksPurple :verified: :verified:🎥 Missed one of my past conference talks? Let’s fix that.I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.“Security Metrics that Matter” 📽️ <a href="https://twp.ai/4ioGd3" rel="nofollow noopener" translate="no" target="_blank">https://twp.ai/4ioGd3</a><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/SecurityAwareness" class="mention hashtag" rel="nofollow noopener" target="_blank">#SecurityAwareness</a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#appsec</a>

Tanya Janca | SheHacksPurple :verified: :verified:🎥 Missed one of my past conference talks? Let’s fix that.I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.“Building Security Champions” 📽️ <a href="https://twp.ai/4ioIx7" rel="nofollow noopener" translate="no" target="_blank">https://twp.ai/4ioIx7</a><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/SecurityAwareness" class="mention hashtag" rel="nofollow noopener" target="_blank">#SecurityAwareness</a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#appsec</a> <a href="https://infosec.exchange/tags/securitychampions" class="mention hashtag" rel="nofollow noopener" target="_blank">#securitychampions</a>

Tanya Janca | SheHacksPurple :verified: :verified:✅ Virtual-friendly ✅ Packages available ✅ Built for developers + security pros ✅ Fun, funny, and full of practical, actionable adviceDM or email me for deets! Tanya [AT] shehackspurple [DOT] ca<a href="https://infosec.exchange/tags/CyberSecurityAwarenessMonth" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurityAwarenessMonth</a> <a href="https://infosec.exchange/tags/SecurityAwarenessMonth" class="mention hashtag" rel="nofollow noopener" target="_blank">#SecurityAwarenessMonth</a> <a href="https://infosec.exchange/tags/SecureCoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#SecureCoding</a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#appsec</a> 3/3

Tanya Janca | SheHacksPurple :verified: :verified:With 25+ presentations to choose from, I cover everything from <a href="https://infosec.exchange/tags/securecoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#securecoding</a> and <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener" target="_blank">#threatmodeling</a> to AI risks and <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#AppSec</a>—always with humor, clarity, and actionable takeaways.💡 These aren’t just talks—they’re lessons your team will remember.<a href="https://twp.ai/9PUvTW" rel="nofollow noopener" translate="no" target="_blank">https://twp.ai/9PUvTW</a>2/3

Open Security ConferenceMeet the team behind the Open Security Conference 2025! 🚀 <a href="https://opensecurityconference.org/about/team/" rel="nofollow noopener" translate="no" target="_blank">https://opensecurityconference.org/about/team/</a>We even have a quest for all of you who enjoy them. 🌟1️⃣ Who of us likes to capture flags and also flames? 2️⃣ Who of us joined the organizing team in 2025? 3️⃣ Who of us created the osco logo?Yep, you might need to dig a bit, yet we're sure you'll find the clues. Post your responses in the comments, we're looking forward to them! 🤩In any case, make sure to register to get your osco package if you haven't already. See you October 2-5! 😉 <a href="https://opensecurityconference.org/conference/registration" rel="nofollow noopener" translate="no" target="_blank">https://opensecurityconference.org/conference/registration</a> <a href="https://infosec.exchange/tags/osco" class="mention hashtag" rel="nofollow noopener" target="_blank">#osco</a> <a href="https://infosec.exchange/tags/osco25" class="mention hashtag" rel="nofollow noopener" target="_blank">#osco25</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#Security</a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#AppSec</a> <a href="https://infosec.exchange/tags/ProductSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#ProductSecurity</a> <a href="https://infosec.exchange/tags/OTsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#OTsecurity</a> <a href="https://infosec.exchange/tags/OpenSpace" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenSpace</a> [lisi]

Tanya Janca | SheHacksPurple :verified: :verified:🎥 Missed one of my past conference talks? Let’s fix that.I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.“Top Ten Security Tips for APIs” 📽️ <a href="https://twp.ai/4ioJ8r" rel="nofollow noopener" translate="no" target="_blank">https://twp.ai/4ioJ8r</a><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/SecurityAwareness" class="mention hashtag" rel="nofollow noopener" target="_blank">#SecurityAwareness</a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#appsec</a> <a href="https://infosec.exchange/tags/APISecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#APISecurity</a>

Open Security ConferenceWe want to thank REWE digital for their continued sponsorship of the Open Security Conference - you're awesome!You helped us make <a href="https://infosec.exchange/tags/osco24" class="mention hashtag" rel="nofollow noopener" target="_blank">#osco24</a> more affordable for folks interested in cybersecurity, and the same applies for <a href="https://infosec.exchange/tags/osco25" class="mention hashtag" rel="nofollow noopener" target="_blank">#osco25</a>. Your support gets us a big step closer and we're grateful. 😊🙏🏻Discover <a href="https://infosec.exchange/tags/REWEdigital" class="mention hashtag" rel="nofollow noopener" target="_blank">#REWEdigital</a>: <a href="https://www.rewe-digital.com/en" rel="nofollow noopener" translate="no" target="_blank">https://www.rewe-digital.com/en</a>Learn more about all our sponsors: <a href="https://opensecurityconference.org/support/sponsors/" rel="nofollow noopener" translate="no" target="_blank">https://opensecurityconference.org/support/sponsors/</a><a href="https://infosec.exchange/tags/HomeOfIT" class="mention hashtag" rel="nofollow noopener" target="_blank">#HomeOfIT</a> <a href="https://infosec.exchange/tags/IT" class="mention hashtag" rel="nofollow noopener" target="_blank">#IT</a> <a href="https://infosec.exchange/tags/Retail" class="mention hashtag" rel="nofollow noopener" target="_blank">#Retail</a> <a href="https://infosec.exchange/tags/osco" class="mention hashtag" rel="nofollow noopener" target="_blank">#osco</a> <a href="https://infosec.exchange/tags/osco25" class="mention hashtag" rel="nofollow noopener" target="_blank">#osco25</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#Security</a> <a href="https://infosec.exchange/tags/ITSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#ITSecurity</a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#AppSec</a> <a href="https://infosec.exchange/tags/ProductSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#ProductSecurity</a> <a href="https://infosec.exchange/tags/OTsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#OTsecurity</a> <a href="https://infosec.exchange/tags/OpenSpace" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenSpace</a> [lisi]

Konstantin :C_H:Two criticals. Two known exploited. One a zero-day. July saw a spike in high-severity vulnerabilities.Here are CVE Crowd's Top 3 from the 624 CVEs discussed across the Fediverse last month. For each CVE, I've included a standout post from the community. Enjoy exploring! 👇<a href="https://infosec.exchange/tags/Pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pentesting</a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#AppSec</a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/BugBounty" class="mention hashtag" rel="nofollow noopener" target="_blank">#BugBounty</a> <a href="https://infosec.exchange/tags/Hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hacking</a> <a href="https://infosec.exchange/tags/CVE" class="mention hashtag" rel="nofollow noopener" target="_blank">#CVE</a> <a href="https://infosec.exchange/tags/CveCrowd" class="mention hashtag" rel="nofollow noopener" target="_blank">#CveCrowd</a>

Tanya Janca | SheHacksPurple :verified: :verified:🎥 Missed one of my past conference talks? Let’s fix that.I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.“Shifting Security Everywhere” - Not just LEFT anymore! 📽️ <a href="https://twp.ai/4io7kb" rel="nofollow noopener" translate="no" target="_blank">https://twp.ai/4io7kb</a><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/SecurityAwareness" class="mention hashtag" rel="nofollow noopener" target="_blank">#SecurityAwareness</a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#appsec</a>

**Tanya Janca | SheHacksPurple** @SheHacksPurple@infosec.exchange · 4d

Tanya Janca | SheHacksPurple @SheHacksPurple@infosec.exchange

Missed one of my past conference talks? Let’s fix that.

I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.

“Secret Hunting” - Finding secrets code! #notgood
https://twp.ai/4io9Jt

YouTubeBSidesSF 2023 - Secret Hunting (Tanya Janca)By Security BSides San Francisco

#CyberSecurity #SecurityAwareness #appsec

**Tanya Janca | SheHacksPurple** @SheHacksPurple@infosec.exchange · 5d

Tanya Janca | SheHacksPurple @SheHacksPurple@infosec.exchange

Missed one of my past conference talks? Let’s fix that.

I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.

“DevSecOps Worst Practices”
https://twp.ai/4ioAXg

YouTubeDevSecOps Worst PracticesBy RSA Conference

#CyberSecurity #SecurityAwareness #appsec

Replied in thread

**David** @deFractal@infosec.exchange · 6d

David @deFractal@infosec.exchange

@cR0w @mttaggart @ckure @librewolf Crap. I missed that. Hmm. Are there alternatives with more reliable financial and #AppSec support?

Replied in thread

**David** @deFractal@infosec.exchange · 6d *

6d *

David @deFractal@infosec.exchange

@cR0w @mttaggart @ckure Sounds like a good reason for a bunch of security nerds to donate financially and contribute security code review to @librewolf. The importance of unenshittified or disenshittified web browsers only grows over time.

#appsec #librewolf

**Open Security Conference** @OSCo@infosec.exchange · 6d

Open Security Conference @OSCo@infosec.exchange

Happy Friday! The weekend is getting closer and you don't know what to do yet? Or have lots of plans already? How about registering for the Open Security Conference?

Why? This is the place for everyone interested in cybersecurity to come together and learn from each other, from wherever we are right now, with whatever we need right now. The #osco is an open space focused on people, co-created by people.

October 2 - 5 in Rückersbach, close to Frankfurt am Main in Germany. See you there!

https://opensecurityconference.org/

#osco #osco25 #CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity #OpenSpace [lisi]

Open Security ConferenceHomeBy osco Team

**Tanya Janca | SheHacksPurple** @SheHacksPurple@infosec.exchange · 6d

Tanya Janca | SheHacksPurple @SheHacksPurple@infosec.exchange

Missed one of my past conference talks? Let’s fix that.

I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.

“Adding SAST to CI/CD, Without Losing Any Friends”
https://twp.ai/4ioCg2

YouTubeOWASP Cambridge & BCS Cybercrime SG “Adding SAST to CI/CD, Without Losing Any Friends” - Tanya JancaBy OWASP Cambridge

#CyberSecurity #SecurityAwareness #appsec

Continued thread

**Tanya Janca | SheHacksPurple** @SheHacksPurple@infosec.exchange · Jul 31

Jul 31

Tanya Janca | SheHacksPurple @SheHacksPurple@infosec.exchange

If you’re working in #AppSec or #DevSecOps and want to streamline your operations, let’s talk — I’d love to introduce you!

https://twp.ai/4iptNT

4/4

twp.aiSmithy Security | The DevSecOps workflow engineThe cybersecurity workflow engine. Secure any code with any tool.

**Tanya Janca | SheHacksPurple** @SheHacksPurple@infosec.exchange · Jul 31

Jul 31

Tanya Janca | SheHacksPurple @SheHacksPurple@infosec.exchange

Excited to share that I’ve joined #Smithy as an Advisory Board Member!

Smithy is building something truly unique — think Zapier, but for #AppSec.
1/4

**Claudius Link** @realn2s@infosec.exchange · Jul 31

Jul 31

Claudius Link @realn2s@infosec.exchange

Are you interested in a different kind of security conference?

Then take a look at the Open Security Conference (@OSCo). #osco25 takes place from October 2 to 5 in Rückersbach (Germany near Frankfurt) and registration is still open at https://opensecurityconference.org/.
(this is an English version of the original German thread https://infosec.exchange/@realn2s/114936419689473030)

Why?

The Open Security Conference aims to be diverse and inclusive. This also includes different levels of knowledge and experience.
It is therefore not only for security experts or for people who have (already) worked in the security sector for a long time,
but also for people who are interested in security or want to get into the field.

The #OpenSpace format not only enables expert presentations,
but also non-expert topics or questions as session topics. Sessions are not resticted to presentations, they can be interactive, collaborative, workshops or basically anything else.

Since topics do not have to be submitted months in advance,
but the agenda is created jointly by the participants, hot topics can also be covered.

The conference is non-commercial, i.e. the total costs are shared between the participants (including the organizers).
The costs include accommodation and meals in the conference hotel.

And yes, there are also sponsors who cover part of the costs.

But not everything is different.

There are great keynotes e.g. by @bkastl ("History repeating itself") and Mireia Cano ("Building an AppSec Program from Scratch").

Open Security ConferenceHomeBy osco Team

#CyberSecurity #Security #InfoSec