- This event has passed.
In-Person Event: CMD+CTRL Web App Cyber Range CTF, Training, Mentoring
July 21 @ 5:30 pm - 8:30 pm
**Topic: CMD+CTRL Web Application Cyber Range – CTF Workshop***
Want to test your skills in identifying web app vulnerabilities? Join OWASP Orange County and Security Innovation, as members compete in CMD+CTRL, a web application cyber range where players exploit their way through hundreds of vulnerabilities that lurk in business applications today. Success means learning quickly that attack and defense is all about thinking on your feet.
For each vulnerability you uncover, you are awarded points. Climb the interactive leaderboard for a chance to win fantastic prizes! CMD+CTRL is ideal for development teams to train and develop skills, but anyone involved in keeping your organization’s data secure can play – from developers and managers and even CISOs.
## Shred Retail – eCommerce Web Site
Shred eCommerce includes 35 challenges of varying difficulty levels. Through SQL Injection, Weak Cryptography, Parameter Tampering, and other vulnerabilities, players can buy items in an unintended way, crack passwords, tamper with other user’s functionality, and conduct other nefarious acts.
* Purchase skateboards and supplies
* Review products
* Purchase and redeem gift cards
* Share and comment on photos
* Manage account information
* View past orders
5:30pm – 6:00pm Networking, Food & Drink sponsored by Security Innovation
6:00pm – 6:10pm Welcome and Opening Remarks
6:10pm – 6:55pm Kickoff, Thinking Like an Attacker, tips on getting started
6:55pm – 8:30pm Attack the vulnerable site – Open Hacking Time
8:30pm – 9:00pm Wrap-Up, Acknowledge top scorers, Prizes, Q&A
Vendors interested in sponsoring send an email to [firstname.lastname@example.org](mailto:email@example.com)
*** NOTE: BRING YOUR LAPTOP TO PARTICIPATE IN THIS CTF**
Registration link: [https://web.securityinnovation.com/owasp-oc](https://web.securityinnovation.com/owasp-oc)
(You may register before the event. Participation won’t start until the live event.)
### Code of Conduct
We hope you enjoy the event, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback/concerns or would like to speak to us, we take these matters very seriously. You can find out more about our policies here: