Security doesn't have to be another checkbox talk. In this session, I'll introduce OWASP and demonstrate security tools directly relevant to DevOps workflows like software composition analysis, secrets scanning, and pipeline security.

But here's the twist: I'll kick off an OWASP Juice Shop CTF that runs for the rest of the day. Hack on it during breaks, open spaces, or between sessions. The leaderboard closes at end of day, and top hackers will be announced with symbolic prizes for bragging rights.

You'll learn:
- What OWASP is and why it matters for DevOps
- Practical security tools you can add to your pipeline today
- How to find and exploit common web vulnerabilities (legally!)

The capture-the-flag requires that the participants bring a laptop and have internet access