Jannik Hollenbach

Security Automation Engineer @ iteratec GmbH

Jannik Hollenbach is a Security Automation Engineer at iteratec GmbH in Germany, working on and with open source security testing tools to continuously detect security vulnerabilities in the companies software and systems. He is also a member of the Open Web Application Security Project (OWASP) working on OWASP Juice Shop an open source vulnerable web application. He is currently in his last year of his Information Engineering masters degree at FH Kiel.

Jannik Hollenbach

Security Automation Engineer @ iteratec GmbH

Jannik Hollenbach is a Security Automation Engineer at iteratec GmbH in Germany, working on and with open source security testing tools to continuously detect security vulnerabilities in the companies software and systems. He is also a member of the Open Web Application Security Project (OWASP) working on OWASP Juice Shop an open source vulnerable web application. He is currently in his last year of his Information Engineering masters degree at FH Kiel.

Workshop: Hacking OWASP Juice Shop

Dia 3
30 Outubro

In this workshop you can test your skills in hacking modern web applications against the OWASP Juice Shop! There are 85+ hacking challenges that are waiting to be solved, ranging from simple functional problems and the usual XSS/SQLi issues over severe authentication flaws up to multi-step and multi-path attacks!

The workshop will consist of multiple short teasers to specific vulnerabilities and time for hacking! You can then stick to the teasered topic or go into free-roaming mode and just try to beat as many challenges as possible. Your pace is entirely up to you! Some of the more mindboggling challenges can optionally be tackled in a “swarm-hacking” style together on the big screen. Over the entire duration of the training you can get first-hand hints by the creator of the Juice Shop in case you get stuck on any challenge.

Please bring the following prerequisites to this workshop:

  • Laptop with your favourite Internet browser
  • Some API testing app like PostMan (optional)
  • Any pentesting toys and tools you like (optional)
14h30 B336
Não percas mais tempo!
Participar