OWASP Cornucopia just released v2.7.0
github.com/OWASP/cornuc...
I just want to give a huge thank you to everyone who contributed this week. In non-particular order. Thank you so much
#owasp #appsec #cybersec #games #security
- Add ASVS and CAPEC mapping API (cornucopia.owasp.org/api/docs) by Mahaboobunnisa Md
- Add ZAP Attack Proxy for nightly DAST scan and create mapping API endpoints for Website App, DBD and MobileApp editions (cornucopia.owasp.org/api/docs) by Mradul Tiwari
#owasp #appsec #cybersec #games #security
Mradul Tiwari , Aashish Kharel, Anirudh Panwar, Mahaboobunnisa Md, Prasun Srivastav, Anand kushwaha, Adarsh Kumar, Suresh Krishna P, Isha Parmar, Abhijit Sahoo, Ayman Algamal
Here is a short summary of what has been done:
#owasp #appsec #cybersec #games #security
OWASP Cornucopia just released v2.7.0
github.com/OWASP/cornuc...
I just want to give a huge thank you to everyone who contributed this week. In non-particular order. Thank you so much
#owasp #appsec #cybersec #games #security
Not even having 1 year head start! Oh, I am rollin it out baby!
Finally I beat the machine! GitHub Dependabot 0, man full throttle!
Nobody is going to be able to say it, that the machine is better!
...and as mentioned in the blog post, we also have an API that can be used to integrate the card game against ticketing systems: cornucopia.owasp.org/api/docs
If you think we used AI to generate that crazy mapping between Cards, OWASP ASVS, CAPECs and OWASP Cheat Sheets, the answer is no. It's manual analysis and review. An LLM wouldn't be able to do it. cornucopia.owasp.org/edition/weba...?
If you find anything, please don't hesitate to contact us or raise an issue.
Each page includes a "View source on GitHub" button that lets you edit the text if you aren't pleased with it. All viewpoints and critiques are welcome as we are trying to create a home for gamified threat modelling.
We would like to thank everyone who contributed to the translations for the new version of the card game and welcome you to review the text on the help pages themselves. Are there inconsistencies? Is there something you feel should be added or removed?
#appsec #cybersecurity #gamedev #security
The Cornucopia of Gamified Threat Modeling
At the OWASP Cornucopia project, we are done with updating the cards and help pages for the Website App Edition v3.0!
dev.to/owasp/the-co...
#appsec #cybersecurity #gamedev #security
🚨 It’s BACK! 🚨
The record-breaking Master AI Security Training hits Vienna! Bigger, sharper & led by expert Rob van der Veer.
🔥 Defend against AI threats
⚡ 1-day, hands-on
🎓 Certification included
👉 Book now: owaspglobalappseceuv...
#AI #CyberSecurity #OWASP
New ZAP Blog Post: Introducing DeepViolet: The Engine Behind ZAP’s New TLS Analysis
www.zaproxy.org/blog/2026-03...
Thanks to Milton Smith
#zaproxy #deepviolet #appsec
Because they always have been running on a CashflowFirst, SecuritySecond platform.
OWASP Cornucopia just released v2.6.33
github.com/OWASP/cornuc...
I just want to give a huge thank you to everyone who contributed this week. In non-particular order. (1/4)
#owasp #appsec #cybersec #games #security
Join Marisa Fagan & Juliane Reimann in Vienna this summer for the Security Champions Program training! Turn engineers into security advocates! 🔐
✅ Plan, launch & grow your program
✅ Motivate diverse teams
✅ Hands-on tools & frameworks
owaspglobalappseceuv...
#OWASP #AppSec #SecurityChampions
Have you heard? 👂
Early bird pricing is OPEN for Global AppSec USA, coming to San Francisco this November!
Celebrate 25 years of OWASP and be part of an unforgettable AppSec experience. 🎟️
👉 owasp.glueup.com/eve...
#AppSec #OWASP #CyberSecurity #EarlyBird #SanFrancisco
- Completed Hindi translation for Mobile App Edition 1.1 created by Sachin Vishwakarma and reviewed by Adarsh Kumar
- Expose all existing v3.0 translations in language dropdown by Isha Parmar
- Lots of security fixes, bug fixes and improvements (4/4)
#owasp #appsec #cybersec #games #security
Here is a short summary of what has been done:
- Allow translation excludes when validating translations
- Add health check endpoint for Fly.io deployment (3/4)
#owasp #appsec #cybersec #games #security
Thank you so much Mradul Tiwari, Saint-Hilaire Kéren, Andrii Kurdiumov, Khushal Malhotra, Adarsh Kumar, Aashish Kharel, Sachin Vishwakarma, Isha Parmar, Abhijit Sahoo, Tanmay Ranjan (2/4)
#owasp #appsec #cybersec #games #security
OWASP Cornucopia just released v2.6.33
github.com/OWASP/cornuc...
I just want to give a huge thank you to everyone who contributed this week. In non-particular order. (1/4)
#owasp #appsec #cybersec #games #security
See you there!
🌞🌞🌞🌞🌞
Announcement: I'm the keynote for Sikkerhetsfestivalen (Security Festival) 2026, in Lillehammer, Norway! August 24 - 26, 2,000 of us will take over that tiny town to learn, party, and connect! Check out the link below to learn more. :-D
https://twp.ai/9PcT4e
As it’s almost Easter so here is a Easter story. When my kids were small they loved painting eggs, but with time, they lost interest. Painting eggs is an essential part of the Spanish Easter tradition so what to do?
Again, my son and I came up with an solution. No need to get those fingers dirty!
Looking forward to entertaining you at the Hackers Behind the Code conference in Lisbon, Portugal, on the 6th of June, this year!
📍 Lisbon, Portugal
📅 June 6, 2026
🎟️ Tickets: r19.io/hbcconference
www.youtube.com/shorts/rymP3...
#appsec #cybersec #security #conference
When clicking the link the connection is reported as not secure, no worries, it’s an out-of-date certificate, but the page is still good.
Again, my son and I came up with a solution. No need to get those fingers dirty!
Here is how you can do the same for Easter: www.brickcodelab.com/boost-scratch/egg-decorator
As it’s almost Easter so here is a Easter story. When my kids were small they loved painting eggs, but with time, they lost interest. Painting eggs is an essential part of the Spanish Easter tradition so what to do?
Again, my son and I came up with an solution. No need to get those fingers dirty!
