The workshop will cover:

  1. SQL Injection (SQLi)
  2. Cross-Site Scripting (XSS)
  3. Local File Injection (LFI)
  4. OS Command Injection (If there is time)

There will be 3 main components for each section:

  1. What is the vulnerability
  2. At least 1 CTF challenge for you to try out.
  3. How to mitigate the vulnerability

Requirements before you come for the workshop

  1. Burp Suite
  2. Docker (If you want to host the challenge locally)