It’s one thing to read about common security vulnerabilities and the different ways to secure a webapp (OWASP checklist anyone?), but it’s quite another to actually perform the attacks and compromise a site yourself, and in this workshop we’re going to do exactly that! We’ll walk through the process of hacking an intentionally vulnerable webapp, learning different hacking techniques used to exploit the different vulnerabilities we find, and how we can mitigate the vulnerabilities that we find. The goal is to teach you how to spot vulnerabilities in your own apps before a hacker does, so you can make your apps more secure.


Comments are closed.

Stephen put together a really insightful, helpful tutorial. He made the hack session interactive, engaging, and educational. He gave time for attendees to poke around, and gave tips to help solve the challenges. Loved it!

Joseph Lavin at 10:31 on 3 Nov 2023

It was a lot of fun! Hacking an actual website really really drove the items home & was super engaging. The website was also put together really well. And the leaderboard aspect w/ real time stats just added to everything.

Eric Minaker at 10:43 on 3 Nov 2023

Engaging, entertaining workshop!

Mark Junghanns at 13:22 on 3 Nov 2023

The challenge was fun and made me rethink some of our security related test procedures.

Really great. Made me think very differently than what I am used to.

Very eye-opening, glad I attended!

Ron Gustinella at 22:36 on 3 Nov 2023

This was a fantastic workshop. I was very impressed by the site Stephen build for the tutorial. It was fun working through the challenges and seeing how everyone was doing on the leaderboard. The time really flew by!

Ariane Dupaix at 09:43 on 4 Nov 2023

An enjoyable and very informative guide to test sites and really think about security from all levels for a site.

Peter Meth at 14:22 on 4 Nov 2023

I liked this. It was very interactice and accessible.

aaron mcquade at 16:32 on 4 Nov 2023

really fun and really cool to see how much damage you can cause with only a browser