OWASP's first Call-To-Battle Community Challenge will begin on February 26, 2021. Brought to you by OWASP, hosted by Veracode.
Join Veracode for a virtual challenge in a chance to compete for the title of “Top Secure Coder”. Veracode Security Labs removes the standard/boring approach to secure software coding and teaches modern secure coding practices through interactive web apps using real vulnerabilities that developers exploit and patch. The labs-based approach to developer enablement can improve time to resolve flaws and help developers avoid flaws altogether, improving skills and overall awareness of secure coding practices. Join the challenge, invite your friends, and see who can complete the most labs in the shortest amount of time to take home the title.
The Secure Coding Challenge will begin Friday, February 26 at 12pmET and will run until Friday, March 5 at 11:59pmET. Prizes will be awarded to the top 3 individuals who complete the most labs in the shortest amount of time.
1st place - $500 Amazon Gift card 2nd place - $250 Amazon Gift card 3rd place - $150 Amazon Gift card
Friday February 26, 2021 12:00pm - Friday March 5, 2021 11:59pm EST
Our second Call-To-Battle Community Challenge will be held on April 9th, 2021.
REGISTER HERE * For member discount code contact events@owasp.com
After tragedy strikes at the OWASP Juice Shop, a crack team of investigators are deployed to unravel the mystery. Work through the Juice Shop challenges while solving the puzzle of what happened with your team in the interactive map. Clues will appear and areas unlock as you crack more of the challenges, letting you solve more of the story in this time-limited virtual escape room.
Pre-requisites: None
You will be assigned to a team and given access to the virtual Gather space, and the directions to the Juice Shop instance for the challenge.
Something terrible has happened in the famous BUZZBEE Juice Shop, and the OWASP Juice Shop is connected. Explore the BUZZBEE Juice Shop and the connected OWASP Juice Shop to solve the mystery.
Hints for the OWASP Juice Shop will be available in the BUZZBEE Juice Shop, and achieving challenges in the OWASP Juice Shop will change the BUZZBEE Juice Shop space – providing more hints and clues to the disaster that has unfolded.
You will need to work together with your team to solve both sets of challenges, so while it is useful to have an understanding of pen-testing (to tackle the OWASP Juice Shop) not all of you need that, an understanding of how to puzzle together mysteries is equally valuable!
The space will be open for 12 hours, and you can submit your solutions to the mystery at any time (but only one answer per entrant will be accepted).
CTF (Capture the Flag) Hacking-Defense Paraguay. A CTF where you not only attack but also defend yourself.
Within the qualification of each team will be measured: 1. The level of hardening of a server and, 2. The points obtained in the attack of a virtual server of your assigned opponent.
Norms / Rules: • Each team should have a leader who will take responsibility for their team. • Each team will have a minimum of 2 members and a maximum of 5 members (including the leader). • The connections and scans of the teams will be monitored, the tournament will be monitored and attacks outside the assigned range will not be allowed (virtual team to defend and team to attack) if the jury detects connections to other external websites the tournament will close connections and will automatically disqualify the team.
Challenges (defensive) to achieve in the CTF 1. Hardenization of O.S 2. Hardenization of services 3. Own vulnerability analysis 4. Reduction of attack gaps
Challenges (offensive) to achieve in the CTF 1. O.S fingerprint 2. Service identification and port scanning 3. Vulnerability analysis 4. Identification of attack gaps 5. Exploitation of vulnerabilities 6. Increase in privileges 7. Extraction of confidential information. 8. Encryption 9. Steganography 10. Cybersecurity Recommendations
Each team must submit 5 recommendations with bases that will be reviewed by a jury composed of invited OWASP Chapter Leaders from Latin America.
Saturday August 28, 2021 9:00am - 2:00pm EDT
Virtual
