BEGIN:VCALENDAR
PRODID:-//vBulletin 6//EN
VERSION:2.0
CALSCALE:GREGORIAN
BEGIN:VEVENT
UID:42f42c1c-a17a-4534-b7a3-ea4a7bbca3cf
DTSTAMP:20260525T044628Z
SUMMARY:Vulnerable by Design:Unguard\,The Insecure Cloud-Native Twitter Clo
 ne- Simon Ammer\, Christoph Wedenig
DESCRIPTION:Vulnerable by Design: Unguard\, The Insecure Cloud-Native Twitt
 er Clone\n\nFriday August 11\, 10:00 – 11:55\, Accord Boardroom\, Forum\
 n\nSimon Ammer\, Christoph Wedenig\n\nUnguard is an intentionally insecure
 \, cloud-native microservices demo application that serves as a playground
  for cybersecurity enthusiasts to sharpen their skills and for cybersecuri
 ty companies to test their software. Designed to mimic a web-based Twitter
  clone\, the platform offers user registration\, login\, content posting\,
  and social interactions\, all with a wide variety of exploitable vulnerab
 ilities. Featuring a wide range of security flaws\, including SSRF\, Comma
 nd/SQL Injection\, Log4Shell\, and Spring4Shell\, Unguard challenges secur
 ity professionals\, developers\, and students to identify\, exploit\, and 
 understand these weaknesses. Simultaneously\, the platform showcases decep
 tive elements\, such as phony ads and profile management options\, which f
 urther enhance the real-world experience offered by the demo.\n\nSimon's i
 nterest in cybersecurity was sparked after listening to the Darknet Diarie
 s podcast\, which led him to pursue a career in this fascinating field. He
  studied Software Engineering and Mobile Computing in Austria\, focusing o
 n enhancing web vulnerability scanner reports for his Master's thesis. Dri
 ven by his passion for cybersecurity\, Simon decided to further expand his
  knowledge by enrolling in another Master's program specializing in Artifi
 cial Intelligence. Currently\, he holds the position of Research Software 
 Engineer in the cloud-native security team at Dynatrace. There\, he levera
 ges his knowledge to employ AI to improve security measures and safeguard 
 digital infrastructures.\n\nChristoph always loved to interact with softwa
 re systems\, even more so in unintended ways. He studied Applied Computer 
 Science in the south of Austria\, focusing on the detection of server-side
  request forgery in his Master’s thesis. As a demo environment for this 
 thesis\, he created a small distributed application called “Vogelgrippe
 ” which was then later extended for various other use cases until being 
 renamed to Unguard and finally gifted to the community as an Open-Source p
 layground. Currently\, he is working in the Application security team at D
 ynatrace\, where he helps build a wide suite of security-related software.
 \n\nAudience - Offense\, Defense\n​
URL:https://forum.defcon.org/node/246245
DTSTART:20230811T180000Z
DTEND:20230811T195501Z
LOCATION:Accord Boardroom\, Forum
END:VEVENT
END:VCALENDAR