@OWASP #IoT & #EmbeddedAppSec Project leader | Co-Chair: @CloudSA IoTWG | Author & Tech Reviewer| 🍕 CISO @Cisco
Joined December 2013
- Tweets 1,971
- Following 2,083
- Followers 2,166
- Likes 2,626
128 Photos and videos
A-a-ron Guzman retweeted
Tracing the evolution of vuln disclosure from pre-bounty days to modern large-scale programs, @scriptingxss highlights the growing complexity of managing submissions, scaling security operations & maintaining strong relationships with the researchers.
youtu.be/-FMwi_V6XeY
4
10
825
A-a-ron Guzman retweeted
21 Nov 2025
⚒️ Tune in to Hardware Vulnerabilities: Lessons from the Vendor Frontlines, where vendors spill the truth and the hardware spills…well, vulnerabilities. #hw_ioNL2025 is wide awake now!
On Panel: Adam Laurie, Aaron Guzmann and Sebastian Paul Avarvarei.
👉hardwear.io/netherlands-2025…
2
2
689
A-a-ron Guzman retweeted
14 Nov 2025
When hardware sneezes, the whole system catches a cold🤧
Join Aaron Guzmann, Adam Laurie & Sebastian Avarvarei at #hw_ioNL2025 as they share frontline vendor stories—and reveal what never to do when your chips start behaving strangely
👉hardwear.io/netherlands-2025…
#Panel #hardware
2
3
598
A-a-ron Guzman retweeted
1 Aug 2025
Here’s the second half of our Friday lineup at @DEFCON – and it’s just as stacked. 🔥
@DaneSherrets, @Shlibness, @mgianarakis, Jordan Macey, @CryptoGangsta, @scriptingxss, @nytr0gen_, @erbbysam, and @BrunoModificato.
See you there. 👀 #BugBounty
7
26
1,928
19 Jul 2025
Excited to share the bounty & VDP evolution story with a sneak peek into the massive opportunities we're cooking up for our researcher community 🧑🍳
Real program data, real researcher, & business impacting outcomes🚀 we’re running a WiFi 7 program now🛜
#DEFCON #bugbountyvillage
7 Jul 2025
We’re excited to announce that Aaron Guzman (@scriptingxss) will be speaking at the Bug Bounty Village at DEF CON 33!
Stay tuned for more details on their talk, you won’t want to miss it.
#BugBounty #DEFCON #BBV #BugBountyVillage
1
3
254
A-a-ron Guzman retweeted
18 Jul 2025
Don't miss "To Pay or Not to Pay? The Battle Between Bug Bounty & Vulnerability Disclosure Programs" by Aaron Guzman (@scriptingxss) on Friday, August 8 at 04:00 PM inside the Village.
Read more at bugbountydefcon.com/agenda
#BugBounty #DEFCON33
1
2
6
755
A-a-ron Guzman retweeted
7 Jul 2025
We’re excited to announce that Aaron Guzman (@scriptingxss) will be speaking at the Bug Bounty Village at DEF CON 33!
Stay tuned for more details on their talk, you won’t want to miss it.
#BugBounty #DEFCON #BBV #BugBountyVillage
1
9
1,136
28 Sep 2024
Presented at @owasp Global SF this week on the IoT security testing guide (ISTG) project released earlier this year 👏 it was awesome to connect with old friends and learn of their perspectives for the future. Amazing event! 🤩
6
347
31 May 2024
Come learn about OWASP ISTG from Luca and I 😎
29 May 2024
Join us next month for a TechTalk where experts Aaron Guzman and Luca Pascal Rotsch will present their comprehensive #OWASP #IoTSecurity Testing Guide, providing essential methodologies for pen testing in the #IoT field. Register here: loom.ly/b9oOptA
3
290
A-a-ron Guzman retweeted
21 May 2024
Strengthen Enterprise Security Through Collaboration at Planet Cyber Sec AppSec SoCal!
Join Omar Minawi, @scriptingxss, Shelby Pace and Natalya Krecker for "How to Win Friends and Influence Trust: Reducing API AuthZ Risks Through Collaborative Defenses."
Discover:
- Power of security and API team collaboration
- Leveraging security research community
- Overcoming API testing challenges
- Collaborative defense strategies
Gain insights to mitigate API AuthZ risks and promote a security-centric culture.
planetcybersec.com/061224-co…
#PlanetCyberSec #AppSecSoCal #AppSec #CyberSecurity #APIAuthZRisks #CollaborativeDefenses
1
1
197
A-a-ron Guzman retweeted
27 Oct 2023
Introductions are happening for the State of {Absolute} AppSec panel at @LASCONATX. Joining @cktricky and @sethlaw are @ejcx_ , @wickett, and @scriptingxss. Hop in to the discussion here: youtube.com/watch?v=g5JJ07jk…
5
6
845
A-a-ron Guzman retweeted
13 Sep 2023
Aaron Guzman's insightful talk helps us discover OWASP's IoT Security Testing Guide for effective penetration tests and dive into robust methodologies and tools. #PlanetCyberSec #AppSecSoCal #AppSec #infosec
#IoTSecurity
@scriptingxss
3
6
375
1 Sep 2023
We are excited to announce that the “IoT Security Testing Guide” project is ready for peer review! 🎉🔬Your expertise and insights play a crucial role in improving the guide’s quality and relevance.
owasp.org/www-project-iot-se…
1
7
18
2,227
1 Sep 2023
Whether you are an experienced IoT security tester or someone passionate about ensuring the security of connected devices, your contributions are highly welcome. Join us in this collaborative effort to strengthen IoT security testing practices and make a positive impact!
1
2
184
1 Sep 2023
Thank you for your support and dedication to IoT security. Together, we can make a difference. 💪🌐
2
172
A-a-ron Guzman retweeted
10 Jul 2023
📖 Penetration Testing Findings Repository
A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that may be discovered during a penetration test
By @CISAgov
#cybersecurity
github.com/cisagov/pen-testi…
3
133
408
41,244
A-a-ron Guzman retweeted
22 Feb 2023
🗒️ @OWASP Kubernetes Top 10
Broken down into 3 categories in order of likelihood:
1️⃣ Misconfigurations
2️⃣ Lack of visibility
3️⃣ Vulnerability management
Risks, mitigations, and lots of relevant tools
By @sysdig
sysdig.com/blog/top-owasp-ku…
28
84
4,598