A good talk. Entertaining and funny to keep the audience engaged.
The reason for 4 rather than 5 is that I was a bit uncomfortable about the naming and shaming. I think for future talks you should keep the companies and individuals mentioned anonymous, unless they've explicitly given permission for you to use their names in that way. No one is perfect and we all make mistakes.
Other than that great talk and I'd love to see you speak again.
Thanks Katy; really interesting, clear and structured talk and a super-important topic. The top 10 is such an important resource. I had more questions! ?
Great talk, thanks Rob. Clear, informative, easy to follow and a good smattering of knowing humour yo keep me listening.
Very great and informative talk covering very specific but also varying parts of security. I admittedly haven't used OWASP before so am intrigued to look into it and learn more. The talk was well structured and the slides very informative with good humour in various parts, however I did find myself getting a bit confused at parts purely due to my inexperience with certain bits of security. Perhaps various things could have been explained better with code examples of actual exploits, but I know there is only so much time in a talk. Either way I think it all worked well and learnt a lot so thank you!
I thought the talk was very well thought out and it had a brilliant flow. The humour was spot on and it wasn't too intimidating for a wide audience. It covered key parts of general security and reminded us we all make human mistakes as developers, and gave us general guidelines to make sure we don't make basic mistakes (but if you do, rectify it and correct it!). Also very informative with questions.
Interesting talk and we'll prepared
An enormous amount of useful information, well explained. Perhaps if there was more time some extra visual content/examples could break up the large amount of information to digest. Really informative learned a lot.
I feel like this talk could do with a little bit more of an introduction, just to explain exactly what OWASP is. It was very informative once it got going but a little more framing to start could ease people who are unfamiliar with OWASP into the talk a lot more easily.
Very informative. Funny in all the right places. Some pretty good lessons learned.
Interesting and very useful content.
My tip for improvement is perhaps spend a little longer explaining how the risks are assessed. I got there eventually but was a bit confused in the first couple of examples.
Other than that great talk.