Christian Schneider

15 Followers

I write software since the nineties, work as a freelance software developer since 1997, focus on Java since 1999 and on IT security since 2005. Aside from the traditional software engineering tasks I support clients in the field of IT security. This includes penetration testing, security audits, architectural reviews, and web application hardening. Several times a year I conduct inhouse training courses on topics like web application security (focussing on Java) as well as on SecDevOps concepts for bringing security into agile projects. Sometimes I enjoy writing articles about web application security and speak/train at conferences about web application hardening (WJAX 2009, JAX 2010, O...

security information security devops java owasp deserialization sast appseceu dast exploit pentest hacking

Activity
About

Christian Schneider

Presentations

Security DevOps: Wie Sie in agilen Projekten trotzdem sicher bleiben // JAX 2015

Security DevOps - Staying secure in agile projects // OWASP AppSecEU 2015 - Amsterdam

Security DevOps - Wie Sie in agilen Projekten trotzdem sicher bleiben // DevOpsCon 2015 - Berlin

Security DevOps - Free pentesters' time to focus on high-hanging fruits // HackPra 2015

Serial Killer - Silently Pwning your Java Endpoints // OWASP BeNeLux Day 2016

Surviving the Java Deserialization Apocalypse // OWASP AppSecEU 2016