The most trustworthy online shop out there (@dschadow)
Translating "dump" or "useless outfit" into German yields "Saftladen" which can be reverse-translated word by word into "juice shop". Hence the project name.
Unsuspectingly browse the Juice Shop like Average Joe!
Covering various vulnerabilities and serious design flaws
OWASP Juice Shop covers all vulnerabilities from the latest OWASP Top 10 and more.
Contains low-hanging fruits & hard-to-crack nuts
Challenge progress is tracked on server-side
Solved challenges are announced as push notifications
I will not live-hack even a single challenge for you!
I will instead show you a prerecorded execution of the testsuite automatically hacking all 27 challenges !
For details on the testsuite implementation and CI-integration check out my Guest Post: Proving that an application is as broken as intended on The SauceLabs Blog.
Breakers Try to hack all the challenges!
Defenders Let loose all your fancy tools!
Builders Learn from my silly mistakes!
Licensed under the MIT license.
Created with reveal.js - The HTML Presentation Framework