For the 2017 ZIONSECURITY Pre-conference Troy Hunt will be leading a 2-day security workshop teaching professionals how to break into their own applications. We look at security from the attacker's perspective and take you through the steps necessary to exploit vulnerable software on the web so that you can experience hacking first hand. The location of the training will be in the vicinity of Leuven, we will disclose the exact location at a later time.
Who is Troy Hunt.
Troy Hunt is an Australian Microsoft Regional Director and a Microsoft MVP for Developer Security on the forums where he interacts with people building their best products and then shares what he knows about creating secure applications for the web with the broader community.
Troy Hunt is a Pluralsight author of many top-rating courses on web security and other technologies. There's no better way to get up to speed on a topic quickly than through professional training that you can take at your own pace.
Take part in a 2-day security workshop that will teach you, technology professionals, how to break your own applications before someone else does.
“Security training is frequently targeted at security professionals; it uses their language, their practices and their tools. This workshop is developer-centric and it focuses on presenting security in a way that resonates with this audience. We'll primarily use tools developers are already familiar with such as the browser dev tools and HTTP proxies like Fiddler and Charles.”
This workshop is developer-centric and it focuses on presenting security in a way that resonates with this audience.”
The first day build fundamental security skills that all technology professionals delivering applications on the web should posses:
“Attendees are taught the mechanics of each of these risks and of course the defensive patterns required to defend against them. But more than that, they get exposed to how to think about security; how to apply it in depth via multiple defences, how to choose appropriate controls based on the specific risk of the feature and how to have the discussion about what makes sense in different circumstances.”
“Attendees are taught the mechanics of each of the risks and of course the defensive patterns required to defend against them.”
The second day delves deeper into online risks, covering more advanced topics in greater depth:
“Hack Yourself First” is all about building up defensive skills in software developers. It looks at security from the attacker's perspective and takes them through the steps necessary to exploit vulnerable software on the web so that they can experience hacking first hand. Workshop participants are set specific goals they must complete that involve probing for risks and then exploiting discrete vulnerabilities in a specially built vulnerable application. The interactive nature of the workshop means that multiple attack vectors are usually identified across the spectrum of participants and each person contributes their own unique perspective as to how specific risks are exploited.
“Hack Yourself First” is all about building up defensive skills in software developers.