ZAP and Burp the Walkthrough

For the past two years I've been using OWASP ZAP and PortSwigger's Burp Suite (Community Edition), switching between the two as I learned hacking techniques and took part in CTFs. Each has their own pros and cons, features I like, quirks, and even room for improvement.

For this event we will be taking a slow walk through the interfaces and features of both tools side-by-side with both pointed at a vulnerable target.

This will be an interactive session where you can ask questions throughout. This event is aimed at the beginner who wishes to know more about these two popular tools. This is an unbiased demonstration and both tools will be in an out-of-the-box state with no optional extras / add-ons / plugins installed.

Agenda:

• OWASP updates
• Live interactive demonstration of ZAP and Burp Suite CE

Disclaimer: As always our events are designed to educate. Any tools and techniques demonstrated are for informative purposes only. We do not endorse their use for malicious purposes.

This talk will not be recorded.