KEMBAR78
commjoen (Jeroen Willemsen) Β· GitHub
Skip to content
View commjoen's full-sized avatar

Block or report commjoen

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
commjoen/README.md

Hi there πŸ‘‹

Twitter Follow LinkedIn OWASP Slack Keybase profile Youtube links

Hi, I am Jeroen Willemsen. As a typical security jack-of-all-trades I love to work at a lot of things. But as a husband, parent, and full-time employee, I only have limited time ;-). I love to share knowledge through talks, blogs, projects at github, and trainings. Want to reach out? Connect to me through Twitter, LinkedIn, (OWASP) Slack, or Keybase.

Upcoming talks

  • TBD

Previous talks: check Youtube or projects at LinkedIn.

OWASP WrongSecrets

My favorite project is OWASP WrongSecrets as it is the first Secrets Management-focused vulnerable/p0wnable app! It can be used as a stand-alone game, as part of security trainings, awareness demos, as a test environment for secret detection tools, and bad practice detection tooling. It even has a supporting CTF platform to play the game in a larger group. Here are some links:

AI Generated games

As a father, I wanted to create some fun games for my children, here are some AI generated projects:

Public projects I am happy to have contributed to

Though I just did a few commits, the real heroes are the maintainers!

🎁 Projects πŸ“š Stars
WebGoat

WebGoat is a deliberately insecure application


Juice Shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application


OWASP Mobile Security Testing Guide

The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.


OWASP Mobile Application Security Verification Standard

The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.


OWASP Cheat Sheet Series

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.


Some stats

Jeroen's GitHub stats Jeroen's GitHub stats

Pinned Loading

  1. OWASP/wrongsecrets OWASP/wrongsecrets Public

    Vulnerable app with examples showing how to not use secrets

    Java 1.4k 483

  2. OWASP/wrongsecrets-ctf-party OWASP/wrongsecrets-ctf-party Public

    Forked from juice-shop/multi-juicer

    Run Capture the Flags and Security Trainings with OWASP WrongSecrets

    JavaScript 52 17

  3. OWASP/wrongsecrets-binaries OWASP/wrongsecrets-binaries Public

    Source code for the Binaries of OWASP WrongSecrets

    Shell 11 6

  4. ubuntu ubuntu Public

    Forked from boxcutter/ubuntu

    Virtual machine template for ubuntu training box on web security

    Shell 6 1

  5. vault-exfiltrate vault-exfiltrate Public

    Forked from slingamn/vault-exfiltrate

    proof-of-concept demonstration on actual running consul backed vault

    Go 1

  6. generated-game-experiment generated-game-experiment Public

    Private experiment to create a game with cursor

    TypeScript 8