https://www.youtube.com/shorts/wgrIy9Cz0qY I recently flew to Ottawa to record the narration for my second book, Alice and Bob Learn Secure Coding, and it was a LOT of work! From September 1st to to 7th, 2025 I recorded 6 hours a day at The Cave recording studio. Focusing on reading highly technical content (including tons of code),…
Threat modeling is really just a fancy way of saying: “Let’s think about what could go wrong with our software in advance, so we can stop it before it happens.” When we build applications, most of us usually think about features, speed, and usability. Threat modeling adds another viewpoint: security. Instead of waiting for attackers…
I'm headed to Las Vegas for the annual series of events known as 'hacker summer camp': Diana Initiative, Black Hat, Def Con, B-Sides LV, SquadCon, etc. Below is my schedule. Please feel free to come to any of these events to meet up with me, I would love to see you, even if we are…
Thank you very much to everyone who came to my talk at OWASP Global AppSec in Barcelona! It was so lovely to have the chance to speak to so many of you, and to share our experiences around security champion programs — especially the ways they can go wrong, and how to avoid those situations.…
Saturday April 26th 2025 through to Friday May 2nd I attended RSAC and B-Sides San Francisco, and it was amazing! Let me tell you about my trip!
I am headed to the B-Sides San Francisco and RSAC conferences in San Francisco, California, USA, from Saturday April 26th, to Friday May 2nd. I'd love a chance to meet up with you, if you will be there.
It’s been a long time since I last wrote on my personal blog, but I’ve been busy creating tons of content! I figured it’s time to share everything I’ve been working on over the past nine months—events, projects, and all. Hope you find it helpful! 😃
Black Hat to Def Con, Diana Initiative to SquadCon, invites to see Tanya all week long!
June 15 & 16th, 2024, I was in beautiful Vancouver Canada with my colleagues Amanda McCarvill and Brandan Wu for the annual, local, moving conference that spreads the Pacific North West to give a talk, but it turned into so much more: OWASP AppSec PNW! The night before was the speaker's dinner, where I got…
Hello folks! As you may have heard, We Hack Purple Community is closing at the end of this month. We were bought by Semgrep a year ago, and the time has come to close down. You can join the Semgrep Community, and/or my personal community, by doing any number of (free) things: Joining the Semgrep Academy …
