WebGoat – Teaching application security 101

Hands-on Labs 1

10:35 - 12:30


A good defense against insecure code requires understanding the mechanics behind how attackers exploit simple programming mistakes.
The WebGoat team will walk through exercises like SQL Injection, XSS, ReDOS, CSRF, … and demonstrate how these exploits work.

We will show you how you can use WebGoat to train your developers to avoid these simple but common programming mistakes.

We also show you how to extend WebGoat to create lessons specific to your environment.
Join us to learn the most basic, but common, application security problems.