1 / 12

RailsGoat

RailsGoat. Ken Johnson OWASP Atlanta- June 20, 2013. WHO AM I?. Really, a question we all face. amiright ? @ cktricky on “the twitters ” Ginger I have many leather-bound books. Railsgoat Intro. Purposefully Vulnerable Rails Application (necessary to specify “purposefully”)

moana
Download Presentation

RailsGoat

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. RailsGoat Ken Johnson OWASP Atlanta- June 20, 2013

  2. WHO AM I? • Really, a question we all face. amiright? • @cktricky on “the twitters” • Ginger • I have many leather-bound books

  3. Railsgoat Intro • Purposefully Vulnerable Rails Application • (necessary to specify “purposefully”) • Aligns with the OWASP Top 10 2010 • Built for realism

  4. Why you should use it? • Q: Pretty, Nice, and Made of spice? • A: Absolutely

  5. Why you should use it? • Great learning tool • Tweak-able (not tweaker, that’s a different group) • Built to scale • Come on people, it’s Ruby!!!

  6. Okay, so how do I get started? • Visit the homepage • http://railsgoat.cktricky.com • Follow installation instructions • Hack all the things

  7. Support Windows? • I’m not even sure Windows supports Windows

  8. Where is the code hosted? • GitHub, because I <3 GitHub

  9. Roadmap • No, we aren’t “winging it”, I swear • The Roadmap is in the form of GitHub “Issues”. • Important additions • Rails 4 • OWASP Top 10, 2013 • More features, more pwnage

  10. Contributions • You earn one million kencoins (like bitcoins except worthless. Actually…..exactly like bitcoins). • Statues will be built in your honor • Good luck with the paparazzi • fork/commit/push/pull-request

  11. Can I see it? • Only if you have 1 billion kencoins!!!

  12. Thanks • You are awesome, slap your hands together repeatedly for yourself. • Twitter - @cktricky • Blogs – • carnal0wnage.attackresearch.com • blog.nvisium.com • cktricky.com (In progress. Very, very slow progress)

More Related