Breaking In to ‘Breaking In’
One-Day Interactive (Classroom) Training - OWASP New Zealand Day 2022
This class provides an introduction to Web Application Security testing for the complete beginner. It’s an updated version of the InfoSec 101 training course given at CHCon 2016 and CrickeyCon 2017. Looks at tools and techniques for exploiting the OWASP Top 10 Vulnerabilities.
Dates: Wednesday, 6 July 2022
Time: 8:45 a.m. to 5:30 p.m. (NZDT)
Instructor: Kevin Alcock
Course Fee: NZ $500.00 (plus GST and ticketing fees)
Registration Site: https://events.humanitix.com/owaspnz2022-training
Maximum Enrolment: 36 attendees
This course teaches the basic techniques for exploiting a vulnerable web application, especially focusing on the OWASP Top 10. Attendee’s will be given targets to exploit along with the tools to do so.
Do terms like XSS, SQLi, RCE, Buffer Overflow, Rootkit, Trojan, Phishing, DDoS, Malware, Virus, or just the word ‘Hacker’ leave you confused? If so, this training is for you. We all had to start somewhere and this is the training for you, the beginner. Kevin is here to help you enter the world of information security. This will be a light-hearted, fun, and interactive session.
We’ll talk through what these terms mean and try to answer questions as we go. There’ll be live examples of the basics, and an opportunity to try these out in a lab (so bring along a laptop). The goal of this session is to come away with some usable knowledge, and an entry-level understanding of the information security world.
- What is Hacking? (History, what’s legal, ethics)
- Hacking in popular culture versus reality
- Getting started
- Understanding attacks
- Performing your first attack
- Tools of the trade
- How to carry on beyond this session
- And more…
Kevin helps run the Christchurch branch of ISIG and the annual Christchurch Hacker Conference (CHCon). He has been programming for a living since 1986 (yes, longer than most of you have been alive) after studying at what is now known as Ara Institute of Canterbury. In those 30-plus years, he spent of lot of his time in Enterprise, Financial systems with mobile/internet applications. In 2016, Kevin became an Offensive Security Certified Professional (OSCP).