Security Daemons

Welcome back everyone, for the 2017 - 2018 school year! We’re excited to let you know that the first meetings of the year for Security Daemons will be held this week. This weeks meetings consist of an introductory meeting for all current and prospective members on Tuesday September 12 and An Introduction to Hacking Web Applications which will be our workshop on Thursday September 14. Both meetings will be held from 6-7:30 PM at the College of Computing and Digital Media (CDM) room 350.

During the Thursday workshop we will go over how to setup BURP Suite + Proxy SwitchyOmega (A google chrome plugin), basic client-server communications, intercepting communication with BURP, understanding common HTTP methods, modifying communication data within BURP, and an introduction to Cross-Site Scripting (https://www.owasp.org/index.php/Top_10_2013-A3-Cross-Site_Scripting_(XSS)).

Thursday's workshop is hands on so please remember to BRING A LAPTOP!! Please also download the FREE BURP Suite + Proxy SwitchyOmega from the following links BEFORE the workshop: https://portswigger.net/burp and in google chrome: https://chrome.google.com/webstore/detail/proxy-switchyomega/padekgcemlokbadohgkifijomclgjgif?hl=en

More details about these meetings and other events can be found on the calendar here:
http://tinyurl.com/secdaemon-calendar

Looking forward to seeing everyone this week!
-The Security Daemons Board

Top 10 2013-A3-Cross-Site Scripting (XSS) - OWASP Attacker sends text-based attack scripts that exploit the interpreter in the browser. Almost any source of data can be an attack vector, including internal sources such as data from the database.

[Event] Bug Bounties and the OWASP Top 10: Messy Vulns and Real Lessons
We'll be hosting a talk this Wednesday (05/03) on bug bounties and related application security issues. Join us in CDM Room 308 at 6PM! More details at goo.gl/TDSe1M

[Event] Bug Bounties and the OWASP Top 10: Messy Vulns and Real Lessons