OWASP Poland Day is the only conference dedicated to application and software security in Poland, aimed at developers, testers, architects, product designers, and managers – in short, anyone involved with securing software lifecycle!

JUŻ DZISIAJ! — 4.10.2023

The Guido Coal Mine, Zabrze City



OWASP Poland Day is the largest annual security conference in Poland focused on topics related to application security. The conference brings together developers, penetration testers and CISOs responsible for ensuring application security. Apart from great presentations delivered by leading application security professionals and researchers the conference will be fantastic networking opportunity.
After the pandemic we are back with an even better conference. Since we organize it in Silesia, it will be very unique – probably the only one in the world application security conference:
-320 meters under the ground
-held in coal mine and museum

Curious how to get there?

1. If you are driving, you can use driving directions from here – https://kopalniaguido.pl/index.php/en/contact-us
2. From most Polish cities you can get to Zabrze by direct train. If not – please go through Katowice and then to Zabrze.
3. From Zabrze Train Station you can walk (~25 minutes), use public communication (every 5 minutes there is a bus to ‘Guido Kopalnia Zabytkowa’) or use taxi/Uber/Bolt/whatever you prefer.


8:30 – 9:30
Registration and going down to
the mine!

9:30 – 9:45
Welcome speech

9:45 – 10:30
Błażej Boczula – “`OWASP Machine Learning
Security Top Ten`.replace(“Machine Learning”,”Human

10:45 – 11:30
Wojciech Reguła – [PL] “macOS Red Teaming in 2023”
Igal Kreichman – “XBOM: Setting the new gold standard for SBOM”

11:45 – 12:30
Piotr Cebulski – “Typical issues and extremely rare vulnerabilities – what can we find in applications nowadays?”
Monika Krysiak – [PL] “Przemycanie dobrych praktyk zapewniania bezpieczeństwa oprogramowania. Przewodnik dla przebiegłych QA”

12:30 – 13:30

13:30 – 14:15
Maciej Kofel – [PL] “Be HAI(A)PI – API hacking with a pinch of AI”
Janusz Sawicki, Yaroslav Popov – “Creating secure code in your pipeline in practice – Automation using the Fortify Platform”

14:30 – 15:15
Iwona Polak – “Web cache juggling”
Łukasz Olejarczuk, Maciej Łuczak – “Ensure developers’ well-being and secure your apps”

15:30- 16:15
Jacek Marmuszewski – “Why do we need security headers?”
Adam Nowak – “How to test cybersecurity effectively”

16:15 – 17:00
Michael Montoya – Running Application Security Program at Scale

17:00 – 18:00
Networking / After Party