OWASP IL July 2024 - Special Workshop!

This one is different from our usual meetups - a special, one-time, hands-on workshop!

This will be a smaller session, with strict interactivity limits, so please ONLY SIGN UP IF YOU WILL PARTICIPATE IN THE TRAINING :-)

In this workshop, Michal Kamensky from Bounce Security will share a small piece of her upcoming Black Hat training: "Accurate and Scalable: Application Bug Hunting".

The interesting, important, and hard-to-find bugs are not generic. They often stem from the unique business logic of the product, so they require familiarity with it.

You will learn how to use customizable scanning tools in order to discover those sneaky vulnerabilities, at scale.
You will be challenged to complete exercises yourself, using a couple of open-source scanning tools, such as Semgrep and Nuclei.
You will see how to customize the rules in these tools so that you can find interesting patterns, while keeping it specific and omitting false positives.
And while you will be using 2 specific tools, the techniques and methodology you will learn are applicable for any customizable scanner, not just these two.

So make sure to come ready to hack, scan, and most importantly - to learn valuable skills you can start applying tomorrow!

Since this is a hands-on training, we must keep it much smaller than usual, so only so please ONLY SIGN UP IF YOU WILL PARTICIPATE IN THE TRAINING. We will be vetting registrations to keep the group small and focused on those that will be actively participating and taking part in the exercises.

Make sure to bring your laptop, and ensure you can install and run the security tools we will be using.