Seth Law is an experienced Application Security Professional with over 15 years of experience in the computer security industry. During this time, Seth has worked within multiple disciplines in the security field, from software development to network protection, both as a manager and individual contributor. Seth has honed his application security skills using offensive and defensive techniques, including tool development. Seth currently hosts the Absolute AppSec podcast with Ken Johnson and is a regular speaker at developer meetups and security events, including Blackhat, Defcon, CactusCon, and other regional conferences.
Training:
Web Hacking and exploitation of vulnerabilities on the web have been around for years. From the first exposure to SQL injection to the hipster vulnerabilities like server-side request forgery, hands-on experience with any of these vulnerabilities is hard fought and haphazard. Experience with any of these issues and their related tools depends on your ability to either find an instance to play with or work through an intentionally vulnerable application. This Web Hacking Workshop will feature common vulnerabilities taken from the OWASP Top 10 and work through explanations and hands-on exploitation of each type using common tools. Attendees are welcome to attend the whole time or just during vulnerabilities they are interested in. Requirements: Attendees are required to bring their own system with Kali Linux installed.
