in
talk by Björn Kimminich / @bkimminich
You missed last year's talk?
OWASP Juice Shop is an intentionally insecure webapp [...] written in Node.js, Express and AngularJS. It [...] contains over 30 challenges of varying difficulty [...] tracked on a score board.
What's new?
OWASP += Juice Shop
Juice Shop is now an official OWASP Tool Project
Multi-language support
Complete UI translations available for several languages
More run options
One-click-Cloud-deployment without hacking restrictions*
*Written confirmation of Heroku tech support: Everything except DDoS attacks is okay!
Even more run options
Automatic provisioning of a Juice Shop VirtualBox VM
Login via OAuth 2.0
You can now use your Google account to log in
Instant success feedback
Solved challenges are announced as push notifications
Advanced disaster recovery
Restore your hacking progress - like a kid of the 80's
More disasters
Juice Shop now sports 30+7 tracked challenges!
More documentation
The official companion guide for the aspiring hacker!
What's up next?
Roadmap
- Continually adding more challenges to the application
- Lab Project status on OWASP (project review ongoing)
- Technical Evolution (Angular, Sequelize, Jasmine/Frisby)
- Classroom CTF-mode (earliest in 3.x release)
- Publish Pwning OWASP Juice Shop eBook
Timeline? When it's done!
Media Coverage
Juice Shop on 7 Minute Security
5 dedicated episodes hacking all challenges (up to that date)
Official Youtube Playlist
All you need for a romantic hacker-movie night!
Call for Contributions
Report bugs & bring in ideas
Check the issues and project roadmap for latest updates
Help with translations
I18N is managed via CrowdIn, but GitHub PRs also work fine
Help with development
Our contribution guideline will help you send PRs in no-time
What's in it for you?
"New Contributor" package
Top-notch laptop decoration for all first-time contributors
For your 1st accepted pull request, translation etc. you get Juice Shop stickers! Shipping worldwide!
"Serial Contributor" package
Get the really cool swag to amplify your bragging rights
Thanks for 👂!
talk:
in
Copyright (c) 2014-2016 Björn Kimminich
Licensed under the MIT license.
Created with reveal.js - The HTML Presentation Framework
