Speakers: Nir Alfasi
In this hands-on session we'll discuss some of the main websites vulnerabilities such as XSS, indirect object access, broken authentication and session management, sql injection and security misconfiguration.
The discussion will be somewhat limited as the majority of this session will be dedicated to hacking: you'll get an IP of a machine on AWS and after you'll register and login you'll get tasks: each task will be a CTF (capture the flag) and in order to find the flag you'll need to expose and use a different vulnerability in order to hack the site. In my experience this is one of the best ways to learn cybersecurity, hope you'll enjoy it as much as I do!
- Not Interested