In this beginner-oriented training you can try out attacks against the modern web applications OWASP Juice Shop! There are almost 100 hacking challenges that are waiting to be solved, but in this training we will focus on up to four categories:
- Cross-Site Scripting
- Injection
- Authentication Flaws
- Authorization Flaws
The training will consist of multiple short teasers to the above vulnerabilities and lots of time for hacking! Your pace is entirely up to you! Some challenges can optionally be tackled in a "swarm-hacking" style together via shared screen on Zoom. Over the entire duration of the training you can get first-hand hints by your trainer in case you get stuck on any challenge.
All participants must
install OWASP Juice Shop before the training in a variant of their own choice - please test that the application starts without error! In case of problems with the installation, please check
the troubleshooting guide or ask for assistance in
the community chat.
**NOTE: This free diversity training is made possible by the OWASP Women in AppSec and OWASP Outreach Committees. Attendees must have applied by Jan. 18th to be considered to attend this program.