Tool

BSides talks featuring OWASP ZAP

72 talks mention this tool across 42 BSides chapters.

Talks featuring OWASP ZAP

Tale of Chaining Bugs for Account Takeover

BSides Ahmedabad · 2022

Technical Vulnerability Research Web AppSec Red Case Studies and Incidents Analysis Talk

Open →2023-02

You can't make web app security easy, but you can make it simple

BSides DC · 2015

Technical Web AppSec Talk

Open →2015-12

Damn GraphQL - Defending and Attacking APIs - Dolev Farhi

BSides Vancouver

Open →2021-06

Web Application Vulnerability Scanners: An Introduction & Discussion on Their Limitations

BSides Cape Town · 2019

Technical Vulnerability Research Web AppSec Talk

Open →2019-12

The Automation Of Firmware-Analysis For IoT-Devices - Alexander Poth

Open →2019-03

BSides LV 2022 - Wednesday - Breaking Ground Track

BSides Las Vegas

Open →2022-08

Building Burp Extensions

BSides Charleston · 2015

Open →2015-12

Continuous Security Testing in a DevOps World

Stephen de Vries

BSides London · 2014

Technical DevSecOps Web AppSec Demo Talk

Open →2014-05

Security BSides Athens 2022 — Live Stream Part 2

BSides Athens · 2022

Open →2022-06

Seriously? You Want Me To Believe Cyber-Spies Want My Data

Open →2012-06

Aarti Gadhia: There is no security skills shortage!

Open →2020-12

Hacking with a Heads Up Display

David Scrobonia

BSidesSF · 2019

Technical Tooling OWASP Web AppSec Talk

Open →2019-03

Automation In Application Security

Javier Dominguez

BSides London · 2019

Open →2019-06

Introduction to OWASP Juice Shop

Tim Corless-Carter

BSides Manchester · 2019

Technical OWASP Vulnerability Research Web AppSec Intro Red Demo

Open →2019-09

Jakub Kaluzny - Proprietary network protocols - risky business on the wire.

BSides London · 2015

Technical Advanced Red Talk

Open →2015-07

BSidesIOWA 2015 Track1: Intro to WebApp Testing with Mutillidae by Andrew Freeborn

Open →2015-04

The Bucket List: Experiences Operating S3 Honeypots

BSidesSF · 2018

Research Cloud IAM Threat Intel Blue Case Studies and Incidents Analysis Technical Deep-dives Talk

Open →2018-04

OWASP Top 10 in GraphQL: An API Adventure

Danielle Rosenfeld-Lovell

BSides Canberra · 2024

Technical OWASP Web AppSec Talk

Open →2024-12

Introduction To Ethical Hacking

Brandon S. Keath

BSides Delaware · 2018

Open →2018-11

BSides Berlin 2023: Jorge Gimenez - Phishing techniques for challenging environments

Open →2024-01

Intro to API Hacking

BSides Dallas/Fort Worth · 2022

Technical OWASP Web AppSec Intro Red Talk

Open →2022-11

SOC Analyst's Arsenal: Essential Tools, Tips & Tricks For Effective Investigations

BSides Munich · 2023

Technical DFIR Detection Engineering Tooling Intermediary Blue Talk

Open →2023-10

How to use XXE to your Advantage

BSides Augusta · 2018

Technical Web AppSec Blue Purple Red Talk

Open →2018-11

2017 - Security Testing As Part Of The Release Pipeline by David Brownhill and Craig Scott Angell

BSides Manchester

Open →2017-08

Securing Fast and Furious DevOps Pipelines

Abdessamad Temmar

BSides Las Vegas · 2019

Technical DevSecOps Supply Chain Security Blue Talk

Open →2019-10

APIcalypse Now: Hunting APIs to Profit

Open →2025-03

Bootstrapping Security

Jared Casner Rob Shaw

BSidesSF · 2020

Open →2020-03

What's Inside The Open Directory From 96 Different Threat Actors?

BSides London · 2025

Research Case Studies and Incidents Analysis Empirical Research Talk

Open →2025-02

InfoSec, Just Doing It

BSides SLC · 2015

Career Career & Soft Skills Intro Talk

Open →2015-04

BSidesIOWA 2015 Track1: Integrating Vuln Scanning into the SDLC by Eric Johnson

Open →2015-04

DevSecOps for Security Teams

BSides Pakistan · 2021

Technical DevSecOps Supply Chain Security Talk

Open →2021-10

Front end Security

Martin Stoynov Spas Genov

BSides Sofia · 2022

Technical Web AppSec Red Talk

Open →2022-04

Low Hanging Blue Fruit: Defending With Open-Source Tools

BSides TLV · 2019

Technical Blue Talk

Open →2019-11

A Hitchhackers Guide to the IoT: Security from a FMCG Perspective

Jerome de las Alas

BSides Charleston · 2022

Technical Hardware Hacking IoT Vulnerability Research Talk

Open →2022-11

Start Hacking APIs

BSides Edmonton · 2023

Technical Vulnerability Research Web AppSec Red Talk

Open →2023-11

Injections... again?

BSides Budabest · 2022

Technical OWASP Talk

Open →2023-06

Where and how to implement Security in Software Development

Radostina Kondakova Jordan Popov

BSides Sofia · 2022

Technical DevSecOps Threat Modeling Web AppSec Methodology Talk

Open →2022-04

Hacking the OWASP Top 10: An Intro to Web Application Security

BSides Denver · 2020

Technical OWASP Web AppSec Intro Talk

Open →2020-10

Building A Secure Development Lifecycle On A Shoestring Budget

BSides SLC · 2016

Technical DevSecOps Talk

Open →2016-05

DevSecOps On A Budget: Building A Secure Dev Pipeline Without Breaking The Bank

Technical DevSecOps Talk

Open →2024-02

Intro to HTTP and De-Sync Attacks

BSides SATX · 2021

Technical Web AppSec Intro Talk

Open →2021-06

Web Application Penetration Testing on a Budget: Building an In-House Program

Harshal Chandorkar Natalia Wadden

BSides Toronto · 2017

Technical Vulnerability Research Web AppSec Talk

Open →2018-01

The Secure Software Supply Chain Function S3C

Alexandar Andonov

BSides Sofia · 2023

Technical DevSecOps Supply Chain Security Talk

Open →2023-03

Mallet — an Intercepting Proxy for Arbitrary Protocols

BSides Cape Town · 2018

Technical Tooling Network Security Reverse Engineering Web AppSec Red Talk

Open →2019-02

REST is the Sweet Sauce of Labor

BSides Peru · 2018

Technical OWASP Web AppSec Demo Talk

Open →2018-06

Threat Modeling for Security Professionals

BSides Peru · 2019

Technical Threat Modeling Talk

Open →2019-07

LightBulb Framework: Shedding Light on the Dark Side of WAFs and Filters

BSides Athens · 2017

Technical Web AppSec Talk

Open →2017-10

Breaking Down Walls With Windows

Alexander Klepal

BSides SATX · 2020

Technical Red Talk

Open →2020-08

BSidesWLG 2017 - Kim Carter - Secrets of a Security Focused Agile Team

BSides Wellington

Open →2018-02

5 Open Source Security Tools

Chris Koehnecke

BSides SLC · 2023

Technical Container Security DevSecOps Supply Chain Security Web AppSec Talk

Open →2023-06

Shift Left without Losing Your Mind - Practical DevSecOps for Busy Teams - Callian Berends

Callian Berends

BSides Joburg · 2025

Technical DevSecOps Intro Talk

Open →2025-09

Penetration Testing Experience and How to Get It

BSides Las Vegas

Career Career & Soft Skills Intro Talk

Open →2024-09

Web Hacking 101: Hands-on with Burp Suite

BSides Philly · 2018

Technical Web AppSec Intro Workshop

Open →2018-11

Rahul Raghavan: The Clutter That's Choking AppSec

Open →2020-12

Framework for Embedded Device Analysis

Madison Oliver Kyle O'Meara

BSides Peru · 2017

Research Technical Methodology Technical Deep-dives Talk

Open →2017-10

AppSec On A Shoe String by Sean Wright

BSides Lancashire · 2023

Technical Supply Chain Security Tooling Web AppSec Talk

Open →2023-04

Ochaun Marshall: Samurai Web Training Framework 5.0

Ochaun Marshall

BSides Calgary · 2021

Open →2021-12

BSidesROC 2023 Hacking and Defending APIs - Robert Wagner

Open →2024-09

Chris Koehnecke - Minimum Viable Security for Cloud Native Stacks

BSides Knoxville

Open →2023-05

The Security Hitchhiker's Guide to API Security

Timothy De Block

BSides Augusta · 2023

Technical Web AppSec Talk

Open →2023-10

Using Large Language Models To Augment AppSec Testing

BSides Newcastle · 2025

Technical AI Security Detection Engineering Web AppSec Intermediary Talk

Open →2025-01

The Halcyon Project: Applying DevSecOps to a Vulnerable App

James Clapperton

BSides Belfast · 2025

Technical DevSecOps OWASP Supply Chain Security Threat Modeling Web AppSec Talk

Open →2025-12

Open Source Software is Amazing and Risky

Nicole Schwartz

BSides Saskatoon · 2024

Technical DevSecOps Supply Chain Security Vulnerability Research Talk

Open →2024-09

eXes & Oauths They Haunt Me: In-Depth Analysis of OAuth/OIDC Misconfigurations & Token Replay Attacks

Darryl G. Baker

BSides Las Vegas · 2025

Technical Cryptography Web AppSec Demo Talk

Open →2025-12

Navigating DevOps security journey at scale with OWASP SAMM 2 0 by Hardik Parekh at BSides Toronto

Open →2021-11

What Will Go Wrong When ZAP Is Driven By GenAI

Gerald Benischke

BSides Newcastle · 2025

Technical AI Security Tooling Web AppSec Technical Deep-dives Demo Talk

Open →2025-11

Do Scanners Suck? I Have The Receipts - Thomas Ballin

BSides Leeds · 2026

Open →2025-08

Imperial Stout: Building Bolder BurpSuite Functionality

BSides Greenville 2020

Technical Tooling Web AppSec Red Demo Talk

Open →2020-06

Salman, Khwaja: Story of Implementation of SecDevOps in Fin Tech Organization and beyond

BSides Calgary · 2021

Open →2021-12

Shift Left with DevSecOps: Scanning Every Code Change

BSides Newcastle · 2020

Technical DevSecOps OWASP Talk

Open →2020-11

Security in Continuous Delivery Pipelines

BSides Newcastle · 2020

Technical DevSecOps Threat Modeling Talk

Open →2020-11

Building the Flight Deck: Tools and Technologies for a Robust AppSec Program

Chris Koehnecke

BSides Albuquerque

Open →2024-08