Hack.me: a new way to learn web application security

Presented at AppSec USA 2013, Nov. 21, 2013, 1 p.m. (50 minutes).

Video of session: https://www.youtube.com/watch?v=hbd_QBJJLhw&list=PLpr-xdpM8wG8ODR2zWs06JkMmlRiLyBXU&index=38 The Hack.me (https://hack.me) project is a worldwide, FREE for all platform where to build, host and share simple and complex vulnerable web applications. It's completely online and doesn't require any software to be installed, just a web browser. Users will be able to run and practice offensive techniques against always new vulnerable web applications provided by the community. Users will be able to practice the OWASP Top 10, testing CMS vulnerabilities,verifying the latest exploits. The vulnerable web applications, referred as hackmes, are run in a sandboxed and user-isolated environment provided by the Coliseum Framework. We will show a typical use of the platform and some of the challenges, both technical and legal, faced by the project.

Presenters:

  • Armando Romeo - eLearnSecurity
    I'm the founder of eLearnSecurity and Hack.me. Passionate about anything web application security related. Connect with me on Linkedin If you are interested in trying one of our web app security training courses click here

Links:

Similar Presentations: