Bishop Fox named “Leader” in 2024 GigaOm Radar for Attack Surface Management. Read the Report ›

Joe DeMesy and Dan Petro to Present at Pycon

Past Event
Pittsburgh, PA
Illustration of bridge with details of Pycon

Bishop Fox Senior Security Associate Joe DeMesy and Lead Researcher Dan Petro will be presenting at PyCon.

The PyCon conference is the largest annual gathering for the community using and developing the open-source Python programming language.

See more about their talk below.

How Real-world Python Applications Get Compromised

From templating engines to filesystem interactions, contemporary Python development encompasses an array of moving parts interacting with one another to compose an application. These complex interactions can lead to subtle flaws that result in catastrophic security failures. We’ll demonstrate the techniques we use to break into Python web applications and APIs based on real-world examples as well as how to fix these types of issues in your own applications.

If you’re a developer but haven’t seen security from the attacker’s perspective before, then this talk will show you the ropes.

Joe demesy

About the speaker, Joe DeMesy


Joe DeMesy is a Principal at Bishop Fox. Joe is an expert in red teaming, secure development, proficient in several programming languages, and is a leading contributor to various open source projects. Joe is a noted expert in the field of information security, having been quoted in MarketWatch, NPR, InformationWeek, and Dark Reading. He has also presented his research at conferences such as BSidesLV, Kiwicon, BlackHat and private conferences hosted by the US Department of Defense.
More by Joe

Dan Petro Headshot

About the speaker, Dan Petro

Senior Security Engineer

As a senior security engineer for the Bishop Fox Capability Development team, Dan builds hacker tools, focusing on attack surface discovery. Dan has extensive experience with application penetration testing (static and dynamic), product security reviews, network penetration testing (external and internal), and cryptographic analysis. He has presented at several Black Hats and DEF CONs on topics such as hacking smart safes, hijacking Google Chromecasts, and weaponizing AI. Dan holds both a Bachelor of Science and a Master of Science in Computer Science from Arizona State University.

More by Dan

Ready to get started? We can help.

Contact Us

This site uses cookies to provide you with a great user experience. By continuing to use our website, you consent to the use of cookies. To find out more about the cookies we use, please see our Privacy Policy.