AppSec Europe 2018: Gamifying Developer Education with CTFs

***Content is subject to change.***

Back To Schedule

Gamifying Developer Education with CTFs LIMITED

Feedback form is now closed.

Limited Capacity seats available

CTFs are a staple of the security world. Nearly every conference has one, and the number of available CTFs (as well as competitors) is constantly growing. However, CTFs are rarely put to use outside of the security community. A frequent cause of security issues is human error, and countless incidents in the real world could have been prevented by a deeper understanding of vulnerabilities. CVEs, OWASP top 10, and other such vulnerabilities may now come naturally to security professionals, but this understanding is often left in our domain. We ran a CTF for our employees for a week during security awareness month in order to give hands-on lessons in offensive security concepts. In this talk we’ll go over the process, the challenges, the successes and failures, and how you can integrate a CTF into your security program.

Speakers

Max Feldman

Slack

Max Feldman is on the Product Security team at Slack, where he works on the bug bounty and security assessments of Slack features, as well as the development of security tools and automation. He was previously a member of the Product Security team at Salesforce.

John Sonnenschein

Red Team Lead, Slack

John works on the Vulnerability Discovery and Product Security teams at Slack, finding bugs before the bad guys do and developing security tools and automation to help

Friday July 6, 2018 11:45am - 12:30pm BST
Westminster- 4th Floor QEII Centre Broad Sanctuary, Westminster, London. SW1P 3EE

DevOps

Host Organization OWASP Foundation

Attendees (40)

m
b
R
C
F
s
P
View All →

AppSec Europe 2018

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Max Feldman

John Sonnenschein

Attendees (40)