ZION SECURITY (EN) > Bootcamp day 1

09h00 - 09h30

• Receipt of present participants.
• Introduction and presentation of ZION SECURITY and attendees.

09h30 - 10h00

• Our security experts provide an overview of the current landscape concerning web application security using statistics like the number of websites being attacked, how they are being attacked and exploited, the motivations of hackers, the expectations, trends,...

10h00 - 10h45

• We discuss the OWASP (Open Web Application Security Project) initiative: 
  • What is OWASP?
  • Who are the (board) members?
  • What can OWASP mean for you?
  • We discuss the most important open source tools and documents 
• The OWASP Top 10 gives an overview of the Top 10 vulnerabilities discovered in existing web applications and highlights the need to improve the security of your web applications as soon as possible.

10h45 - 11h00

• Break: coffee and refreshments

11h00 - 12h30

• Open discussion: How can you implement a Secure Development Lifecycle within your organization? We discuss your situation: what are the main difficulties or obstacles? What are the solutions or options to solve these difficulties? We provide practical examples of how to implement a Secure Development Lifecycle.

12h30 - 13h30

• Lunch

13h30 - 15h00

• We discuss the most common vulnerabilities in Web 1.0 like failure to restrict URL access, insecure communications, insecure cryptographic storage, broken authentication and session management,...  Our experts give real practical examples how hackers abuse these vulnerabilities.

15h00 - 15h15

• Break: coffee and refreshments

15h15 - 17h00

• Web 2.0: What are the changes on the level of security compared with Web 1.0? We discuss the most common vulnerabilities in Web 2.0 like repudiation, cross site request forgery, javascript hijacking, JSON hijacking and many more. Our experts show real practical examples how hackers abuse these vulnerabilities.