The OWASP Juice Shop is the world's most widely used deliberately insecure web application. This is your chance to learn from the person who built it. In this workshop you'll get to use it, break it, and then go behind the scenes to understand how it's developed, tested, and maintained as a thriving open source project.
You'll get hands-on time hacking real vulnerabilities: Broken Access Control, Injection, XSS, Sensitive Data Exposure and more; with guided demos and mob hacking sessions to make sure everyone keeps up. Then Björn flips the script to show you what's running under the hood: the GitHub org, CI/CD pipelines, contributor guidelines, and how the project handles AI-generated spam and slop.
"The runtime of each chapter will be determined by the participants of the workshop, so that you get the most out of the available time. It's your workshop, so you should have the last word about the prioritization and approach!"

Björn works as Product Group Lead Application Ecosystem at Kuehne+Nagel, responsible, among other things, for the Application Security program in the global IT. He is an OWASP Lifetime Member, project leader of the OWASP Juice Shop, and a co-chapter leader for the OWASP Germany Chapter. Björn also currently chairs the OWASP Project Committee.
This workshop is free! A ticket is still required to secure your seat, as capacity is limited.
Register Free