PRESENTERS: Kendall Lewis, Nick Tripp
DEPARTMENTS: Duke Medicine Information Security Office; Duke University Information Technology Security Office
FORMAT: Lab (Bring your own laptop with someone to lead on topic or instruction)
Attackers today have an ever-increasing number of web application weaknesses at their disposal, which may be exploited to accomplish a countless number of malicious tasks. We will perform a structured webapp hack using audience participation. Participants are encouraged to bring their laptops to hack alongside in a safe environment or, if they prefer, to join the group conversation for a team hack. Knowledge and understanding of the hacking process can help IT staff improve the overall security posture of their own applications.