This year OWASP Juice Shop saw several significant enhancements and extensions that you will learn all about in this talk: 2x NoSQL injection and 2x typosquatting challenges! Customization and re-branding of the shop to your own corporate look & feel! Juice Shop CTF extension makes setting up hacking events fast & easy! Free "Pwning the OWASP Juice Shop" eBook surpasses 150 pages of in-depth information, hints and solutions for all challenges and more! At AppSecEU the project was promoted into OWASP's "Lab Projects" maturity stage! You can now 3D-print your own Juice Shop merchandise! And much, much more - actually more than can be demonstrated in this 15min session, so best install the Juice Shop yourself afterwards and explore its capabilities yourself!
18. Upcoming Release 6.x (🔮)
Two new 🍪JWT-related vulnerabilities...
...bringing the total to ≥48 challenges
Overhaul of the 📍Object-Relational-Mapping...
...and all generated parts of the API
... xing our two oldest open 🐛bugs along the way
Node.js 8.x is the 🆕recommended version...
...but 6.x will continue to work as well
...and on the 🔥-new 9.x it also runs smoothly
19. Beyond Release 6.x (🌌)
Frontend update to 🍭Angular ≥5...
...or something completely di erent
Participate in 🌻Google Summer of Code 2018...
...given OWASP is selected next year
Get Juice Shop 🍾promoted to Flagship Project ...
...at some point in its lifecycle
24. Finally: Thanks to you for 👂!
Copyright (c) 2017 Björn Kimminich
Licensed under the .MIT license
Created with - The HTML Presentation Frameworkreveal.js
25. Finally: Thanks to you for 👂!
Copyright (c) 2017
Licensed under the .
Created with - The HTML Presentation Framework
Björn Kimminich
MIT license
reveal.js