This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP Bucharest AppSec Conference 2017 Workshops"

From OWASP
Jump to: navigation, search
Line 17: Line 17:
 
'''Skill level: '''The workshop does not assume an in-depth knowledge of software security.  <br>
 
'''Skill level: '''The workshop does not assume an in-depth knowledge of software security.  <br>
 
'''Requirements:'''
 
'''Requirements:'''
*laptop with OWASP Juice Shop installed using one of the setups described in https://github.com/bkimminich/juice-shop#setup  
+
* laptop with OWASP Juice Shop installed using one of the setups described in https://github.com/bkimminich/juice-shop#setup  
* modern Javascript-heavy web applications and their underlying RESTful APIs
+
* internet browser with some API testing plugin (e.g. PostMan for Chrome)
*internet browser with some API testing plugin (e.g. PostMan for Chrome)
+
* ''(optionally)'' any kind of pentesting tools
*(optionally) any kind of pentesting tools
 
 
<br>
 
<br>
 
'''Seats available: '''20 (first-come, first served)<br>
 
'''Seats available: '''20 (first-come, first served)<br>

Revision as of 10:46, 9 July 2017

Workshop

Time Title Trainers Description
Workshop
13th of October
3 hours:
begins at 11:00

AppSec Bucharest vs. OWASP Juice Shop
 Björn Kimminich Description:
In this *free* workshop you can test your skills in hacking modern web applications against the OWASP Juice Shop! There are 43+ challenge that are waiting to be solved, ranging from simple functional problems and the usual XSS/SQLi issues over severe authentication flaws to multi-step & multi-path attacks against the discount coupons issued by the application!

How many challenges can you beat? During the workshop you can get some first-hand hints in case you fell stuck. At the end of the workshop there will be a demo of some of the more mindboggling challenges - but only for those, who don't want to solve them on their own later! You will have an idea how good you and your tools are with
Intended audience: Developers and pentesters with at least basic understanding of common web application vulnerabilities
Skill level: The workshop does not assume an in-depth knowledge of software security.
Requirements:

  • laptop with OWASP Juice Shop installed using one of the setups described in https://github.com/bkimminich/juice-shop#setup
  • internet browser with some API testing plugin (e.g. PostMan for Chrome)
  • (optionally) any kind of pentesting tools


Seats available: 20 (first-come, first served)
Price: free
Register here

Retrieved from "https://wiki.owasp.org/index.php?title=OWASP_Bucharest_AppSec_Conference_2017_Workshops&oldid=231482"