The purpose of this presentation is to outline common vulnerabilities with modern web apps. We're going to start with the basics and talk about design challenges and common scenarios.



We'll be demonstrating some common web app vulnerabilities such as cross-site scripting and SQL injection on an intentionally vulnerable host.



If you have a laptop that can run virtual machines, bring it. If not, show up anyway.



Feel free to provide lots of feedback - suggestions/questions will be used to help develop a longer course down the road.



This session is open and free to the public.