Thank you very much to everyone who came to my talk at OWASP Global AppSec in Barcelona! It was so lovely to have the chance to speak to so many of you, and to share our experiences around security champion programs — especially the ways they can go wrong, and how to avoid those situations.…
Saturday April 26th 2025 through to Friday May 2nd I attended RSAC and B-Sides San Francisco, and it was amazing! Let me tell you about my trip!
I am headed to the B-Sides San Francisco and RSAC conferences in San Francisco, California, USA, from Saturday April 26th, to Friday May 2nd. I'd love a chance to meet up with you, if you will be there.
It’s been a long time since I last wrote on my personal blog, but I’ve been busy creating tons of content! I figured it’s time to share everything I’ve been working on over the past nine months—events, projects, and all. Hope you find it helpful! 😃
Black Hat to Def Con, Diana Initiative to SquadCon, invites to see Tanya all week long!
June 15 & 16th, 2024, I was in beautiful Vancouver Canada with my colleagues Amanda McCarvill and Brandan Wu for the annual, local, moving conference that spreads the Pacific North West to give a talk, but it turned into so much more: OWASP AppSec PNW! The night before was the speaker's dinner, where I got…
Hello folks! As you may have heard, We Hack Purple Community is closing at the end of this month. We were bought by Semgrep a year ago, and the time has come to close down. You can join the Semgrep Community, and/or my personal community, by doing any number of (free) things: Joining the Semgrep Academy …
Hey there, fellow security folks! I've got some absolutely incredible news to share with you today. Brace yourself, because I guarantee you'll be just as excited as I am. Drumroll, please... introducing Semgrep Academy! Are you ready to learn all things application security, secure coding, API security, static analysis, and maybe even some functional programming?…
I am beyond thrilled to share the news with you! The launch of Semgrep Academy is finally happening on May 1st, and I couldn't be more excited.
On Oct 29th, 2023, was the very first edition of “ThreatModCon”, a conference dedicated entirely to threat modelling. On the 30th and 31st was “OWASP Global AppSec”, a conference by the OWASP Foundation, dedicated entirely to application security. On November 1st and 2nd, I helped Adam Shostack deliver his 2-day intensive threat modelling training. This…
