You can find the whole series here:
https://www.bouncesecurity.com/blog/2025/01/21/so-you-want-to-train-at-black-hat-introduction
Josh Grossman (tghosth👻) :verified:
Your friendly AppSec Ghost 👻 | Personal account, content does not represent my employer. | Board member at https://twitter.com/OWASP_IL
| Project leader at https://twitter.com/OWASP_ASVS
So you have a great training course with super-cool interactivity, now you have to get it accepted.
In my next blogpost, I talk about writing a proposal which appeals to both the review board and also your potential attendees.
Check it out here:
https://www.bouncesecurity.com/blog/2025/06/03/writing-your-submission
Last week, I was honoured to received a Distinguished Lifetime Member award from OWASP at Global AppSec EU Barcelona 2025.
I wrote more about it here:
https://www.linkedin.com/posts/joshcgrossman_appsecil-activity-7338626569625595905--7TT
@raesene thanks :)
I'm sorry but I have no specific recommendations on the cloud side, most of my focus as been on the group style exercises.
Iximiuz does look interesting
Link to the new post is here and don't forget to check out my other posts in this series "So you want to train at Black Hat (or other conferences)?"
https://www.bouncesecurity.com/blog/2025/05/13/planning-the-practical.html
Want to make your security training course memorable? 🎯
My latest post dives into creative ways to get students' hands dirty, from cloud-hosted labs to simulated stakeholder exercises. Learn how to make practical exercises the highlight of your course, not just an afterthought.
My blog series on developing training courses continues with a post about how to find the topic you are passionate about and that will also attract attendees:
https://www.bouncesecurity.com/blog/2025/04/20/find-your-niche
@raesene yeah that's what I get for releasing a blog post on 1st April, it's definitely available now :)
You can see the previous posts in this series here:
https://infosec.exchange/@JoshCGrossman/114217059565444222
So, you've decided you want to deliver training courses at a conference?
In the next post in my series about my experiences, I want to talk about money. I don't think it should be your main motivation but you probably can't ignore it!
Check it out:
https://www.bouncesecurity.com/blog/2025/04/01/work-out-your-financials
I will be publishing the next post in this series tomorrow so look out for it!
https://infosec.exchange/@JoshCGrossman/114217059565444222
Josh Grossman (tghosth👻) :verified: boosted:
This year should hopefully be the 3rd year that I train at @BlackHatEvents #BHUSA and also at @owasp #AppSecEU?
But how did I get to this stage?
The short answer is a lot of thought and hard work.
And the long answer?
Well I thought I'd write some thoughts down...
🧵 1/x
In the second post, I talk about my motivation behind getting to this stage. This wasn't an any easy process and it took a lot of work to get to the required level.
If this is something you are considering doing, you need to be ready to commit.
https://www.bouncesecurity.com/blog/2025/02/24/what-is-my-motivation-what-should-be-yours
🧵4/x
In the first post I explain a little more about the rationale behind the series and the sorts of topics I will be covering.
Feel free to reach out to me if you have questions on specific topics or other ideas 😀
https://www.bouncesecurity.com/blog/2025/01/21/so-you-want-to-train-at-black-hat-introduction
🧵3/x
"Some thoughts" turned into a multi-post blog series which I have been writing for a while and I am now determined to get it polished up and finalised over the next few months.
For now, I have published the first two parts.
🧵2/x
This year should hopefully be the 3rd year that I train at @BlackHatEvents #BHUSA and also at @owasp #AppSecEU?
But how did I get to this stage?
The short answer is a lot of thought and hard work.
And the long answer?
Well I thought I'd write some thoughts down...
🧵 1/x
You can register for that course here:
https://www.blackhat.com/us-25/training/schedule/index.html#accelerated-appsec---hacking-your-product-security-programme-for-velocity-and-value-43988
Alternatively, you can see much more info on the course including explanatory videos here:
https://www.bouncesecurity.com/training/accelerated
5/5
At @BlackHatEvents #BHUSA on 4-5 Aug in Las Vegas, you can attend "Accelerated AppSec: Hacking your Product Security Programme for Velocity and Value".
This course helps you build a successful programme to bridge the gap between developers and security, without losing speed.
4/5
You can register for that course here:
https://owasp2025globalappseceu.sched.com/event/1v7oR
Alternatively, you can see much more info on the course including explanatory videos here:
https://www.bouncesecurity.com/training/valuenotvulns
3/5
At #GlobalAppSec EU on 26-27 May at the CCIB in Barcelona, you can attend "Building a High-Value AppSec Scanning Programme", with big updates for 2025.
If you want to build effective and valuable processes around tools like SAST, DAST and SCA, this is the course for you.
2/5
Client Info
Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst