Developing Secure Web Applications

Register for workshop

Open Registration Form

Infos

Start: 2019-03-24 14:00
End: 2019-03-24 18:00
Location: TÜV SÜD, Gebäude Newton, Ridlerstraße 57, 80339 München

Abstract

Did you ever want to know how hacking web applications works? This will be an introduction into vulnerabilities, application pen testing and the security of web applications. Only if you know how hackers attack your application, you will be able to defend yourself.

Nearly all companies use web applications nowadays. Any vulnerability in those applications may be an invitation for hackers to attack it. This workshop will give you insights on those things that you should never neglect when programming your application.

Course outline:

  • A small online ‘escape the room’-like teaser to gain insights about some techniques used for attacking web applications e.g. Disabling frontend checks using the Chrome Developer Tools (Hands On)
  • An overview of the OWSAP top 10 vulnerabilities
  • A hands on session where a vulnerable application shall be exploited using SQL Injection, XSS and File Inclusion attacks
  • A hands on session on how to resolve the vulnerabilities

Requirements

All participants will need a laptop as well as internet connection. Software development experience is required.

Janosch Maier

@phylu

Janosch Maier holds a computer science master degree and a pedagogy bachelor degree. He worked in several start-ups and developed a cyber security dashboard for the Dutch ministry of justice.
After his studies, he founded the Crashtest Security GmbH where he develops a vulnerability scanner for web application. Because of his interdisciplinary background he is responsible for increasing the awareness about web application security.
Janosch is giving regular talks and workshops to promote IT security in agile software development for SMEs and corporates.