Noa Moshe

Noa Moshe

Solutions Engineer | Helping companies develop fast & stay secure @ Snyk
How to Exploit Real World Vulnerabilities
TestJS Summit 2021TestJS Summit 2021
47 min
How to Exploit Real World Vulnerabilities
WorkshopFree
This workshop will lead you through installing and exploiting a number of intentionally vulnerable applications. The applications will use real-world packages with know vulnerabilities, including:

- Directory traversal
- Regular expression denial of service (ReDoS)
- Cross site scripting (XSS)
- Remote code execution (RCE)
- Arbitrary file overwrite (Zip Slip)
- These exploits exist in a number of applications, most of which you will need to install either locally or on a cloud instance.

You can do this workshop in 2 different flavours:

- Using the prepared Docker images OR
- Install everything on your local machine.