Cybersecurity is non-negotiable in today's digital landscape. Join me in a deep dive into the OWASP Top 10 list—an essential guide to understanding and mitigating web application vulnerabilities. Through real-life case studies and practical examples, we'll dissect common exploits such as injection flaws, broken authentication, and sensitive data exposure. Learn how these vulnerabilities can be exploited and, more importantly, how to defend against them effectively. Whether you're a seasoned developer or new to security practices, this session will equip you with actionable insights to safeguard your applications and elevate your coding practices.

This talk will introduce, walk-through and leave you prepared to engage with the internet’s best defense against hacking! I will familiarize you with OWASP and where they came from, what they do and where they are going. We will step through some challenges in the Juice Shop demo they have, familiarizing everyone with the project. I will also show off some other work by OWASP that is leading the way in defense against hackers.
What is OWASP? - 10 min
XXE - 5 min
Proactive > Reactive - 10 min
The Mind of an Attacker - 20 min
OWASP ZAP - 10 min