Wednesday
7 Aug/24
13:30 - 17:30 (Europe/Zurich)

Web application security penetration testing

Where:  

513/1-024 at CERN

Please note that all participants must bring their own laptop to the workshop

Please note that we have 35 places for this workshop. Interested students who could not sign up, could check the registration regularly in case of cancellations. 

In order to protect computers and networks from malicious attacks, we need to find and fix any vulnerabilities before they are identified and exploited by the bad guys (Black Hats). One of the ways to achieve it is to do penetration (security) testing. To do this efficiently, the good guys (White Hats) have to think and act as the bad guys - but with the ultimate goal of securing the target rather than abusing it. In this 4-hour workshop, you will learn the tools, the techniques - and the ethics - of a White Hat penetration tester. We will focus on web applications, as these are the most common targets in any organisation. 

The workshop will consist of:

* an introduction to web security and penetration testing (1h)

* a hands-on part: finding and exploiting vulnerabilities in a simple web application (2h)

* a debriefing, discussing the most common types of web application vulnerabilities (1h)