Gear up for Free 44con webinars with 7ASecurity this April & May. Take a deep dive into the OWASP Security Testing Guide and relevant items of the OWASP Application Security Verification Standard (ASVS). Once again we will be running three free 1 hour webinars as a run up to the courses at 44con.
- Hacking Modern Web apps with RCE and Prototype Pollution: Thursday 29th April 2021 at 5 p.m. GMT.
- Hacking Android & iOS apps with Deep Links and XSS: Thursday 6th May 2021 at 5 p.m. GMT.
- Hacking Modern Desktop apps with XSS and RCE: Wednesday 12th May 2021 at 5 p.m. GMT.
The webinars are packed with case studies from real-world vulnerable applications. Also, includes interesting security flaws that we have discovered over the years. The courses are Ideal for Penetration Testers and Web, Desktop & Mobile app Developers. To sum up for everyone interested in JavaScript, Node.js, Electron or mobile app security.
The web webinar covers RCE options & Prototype Pollution attacks against Node.js apps. In the Android & iOS webinar we introduce Deep Links, XSS & data exfiltration. Finally learn how to turn XSS into RCE in Modern apps & attack preload scripts in the desktop webinar.
The main courses will run in June and September and are part of 44con 2021 Virtual Training. The training’s will be held on 14-17 June and 13-16 September (4 half days format).
- Web Apps Security: Hacking Modern Web apps: Master the Future of Attack Vectors
- Mobile Apps Security: Hacking Android, iOS and IoT apps by Example
- Desktop Apps Security: Hacking Modern Desktop apps: Master the Future of Attack Vectors
Audience level
From new to advanced content will keep all skill levels happy: You will learn a lot regardless of skill level and get more than what you paid for 🙂
Presented by:
Abraham Aranguren: After 13 years in itsec and 20 in IT Abraham is now the CEO of 7asecurity.com. A company specializing in penetration testing of web/mobile apps, infrastructure, code reviews and training. Security trainer at Blackhat USA, HITB, OWASP Global AppSec, HackFest, Nullcon, 44Con and many others. Previously senior penetration tester / team lead at Cure53 (cure53.de) and Version 1 (www.version1.com). Also, creator of “Practical Web Defense” – a hands-on eLearnSecurity attack/defense course (www.elearnsecurity.com/PWD). Additionally, OWASP OWTF project leader, an OWASP flagship project (owtf.org).
As a shell scripting fan trained by unix dinosaurs, Abraham wears a proud manly beard. Also, he writes on Twitter as @7asecurity @7a_ @owtfp or https://7asecurity.com/blog. Multiple presentations, pentest reports and recordings can be found at https://7asecurity.com/publications.
For the most up-to-date information about upcoming training events, including free workshops, check the training page.
