SAMM at Global Appsec

Toreon and Codific will host a joint booth at Global Appsec Lisbon. At the booth we will promote OWASP SAMM and SAMMY.

Reach out to Toreon if you are interested in SAMM assessments, threat modeling training or other security consultancy services.

Reach out to Codific if you are interested in SAMMY, the SAMM implementation tool. Or go ahead and start using the tool for free.

Expect to find us on stage at the SAMM user day, and much more still to be announced. Stay tuned…

OWASP SAMM at global Appsec.

A passion for application security and a strong belief in OWASP SAMM is what brought Codific and Toreon together. The collaboration started within the scope of the core team behind SAMM where several people from both companies volunteer their time. Both companies are ambassadors of SAMM and have tons of real world experience implementing SAMM at organizations large and small in many different industries. As Toreon focusses on consultancy services around SAMM and Codific focuses on the tooling, this is your dream team when implementing SAMM at your organization. Hence the decision to host a booth together.


Several key OWASP figures including the SAMM project co-leader are part of the Toreon team. Its close association with several projects and extensive experience with implementations make it the go-to partner for SAMM assessments and threat modeling training. Team members include Sebastien Deleersnyder, Maxim Baele and Steven Wierckx.

See the interview of The Application Security Podcast with Toreon’s CTO Sebastien Deleersnyder
Sebastien Deleersnyder and Bart De Win -- OWASP SAMM


Codific is a product team that first built SAMMY for internal use, to manage SAMM for all its products and teams. Ample demand led to a large investment in the tooling and the team behind it. Team members include Aram Hovsepyan and Brian Glas.

See the introduction to the OWASP SAMM Fundamentals Course by Aram Hovsepyan, the CEO of Codific
OWASP SAMM Fundamentals Course

Get Instant Access to OWASP SAMM SCORM Content

Unlock exclusive access to our OWASP SAMM SCORM content by filling out the form below. Once submitted, you’ll receive an email with a direct download link, allowing you to integrate the SCORM package seamlessly into your learning environment.

    What is SAMMY?

    SAMMY is the tool we created to help with the implementation of OWASP SAMM. It exists in three versions, a free online version, an open source version (coming soon), and a corporate (paid) version.

    How to get started with SAMMY

    How to get started with OWASP SAMM on SAMMY