Maven Security will be presenting a 50-minute presentation at Security BSides Philly 20117 on Friday, December 2017.
The talk will be titled, “Web Security Dojo – Your own personal web app fight club”.
Here is the talk’s abstract:
Note the Bsides’ site has the wrong title and abstract for this talk 🙁
Web Security Dojo is a free open-source training environment for learning and practicing web app security testing. It is ideal for self-paced learning and skill assessment, as well as training classes and conferences since it does not require a network to function. Web Security Dojo contains tools, targets, and documentation pre-installed within a single virtual machine image suitable for Virtual Box or VMware.
This presentation will introduce the audience to the Web Security Dojo, and demonstrate how to get up and running in a few easy steps. Participants are encouraged to follow along as the Web Security Dojo is put through its paces locating and exploiting cross-site scripting (XSS) and SQL injection flaws. The flaws and their potential impacts will be explained (and demonstrated) for those not familiar with web app security.