OWASP Helsinki chapter meeting #40

Time: 18:00-20:30

Agenda

18:00 Opening words and news from OWASP, Pekka Sillanpää, Chapter leader, OWASP Helsinki chapter
18:15 Introduction to Juice Shop, Björn Kimminich, Chapter leader, OWASP German chapter
19:15 Trust considered harmful: Breaking dangerous trust relationships in modern web applications, Teo Selenius, Senior Security Specialist, Nixu Oyj
20:00 Questions and answers

Please register by 16th of Mar.

Bio:

Björn is the project leader of the OWASP Juice Shop and a chapter leader for the German OWASP chapter. He currently also chairs the OWASP Projects Committee.

Abstract:
OWASP Juice Shop is the flagship of intentionally broken web applications. It a total of 100 hacking challenges wrapped in an almost realistic e-commerce application! Let's go on a happy shopper round trip, do some hacking demos and witness how to apply custom themes to the Juice Shop to make it your company's next security awareness super-weapon. Juice Shop even comes with built-in CTF support! Last but not least, we'll take a look at and some of the newest features such as Cheat detection, tutorial mode and the challenge solution WebHook!

Bio:
Teo Selenius is an enthusiastic application security engineer from the North, currently employed by Nixu Corporation, mostly doing application security assessments. He also runs the appsecmonkey.com website.

Abstract:

How to stop trusting that Internet-facing webservers/load-balancers/applications don't get compromised. Or that developer's credentials don't get phished, or their workstations infected with malware. Or that the internal production network is safe. Or that someone doesn't carry the database server's disk out of the server room. Or the backups. Etc.