#WebAppSecurity

The European Online Conference About Fuzzing
MARCH 24, 2021
100% Online
BOOK Ticket

About FuzzCon Europe

Speaker FuzzCon Europe

More than 1100 security experts participated in FuzzCon Europe 2020 last September, this event is now being continued. FuzzCon Europe - WebSecurity Edition is aimed at software engineers, web developers and IT security experts who want to learn more about the latest trends in web application security. 

This conference is also highlighting security challenges of Java Spring Boot and other popular Java frameworks. Learn from experienced practitioners and get an overview how to secure your applications with modern fuzzing techniques. 

Java is one of the most popular programming languages worldwide, especially for developing complicated backend systems and web interfaces. But although modern Java frameworks like Spring Boot already assist you in developing secure code, some bugs won't be detected by the frameworks... yet! In many cases additional tools for API testing and more advanced DevOps processes are required to protect your software against those vulnerabilities (e.g. OWASP Top 10). 

Get inspired by real case studies from the industry and discover the potential of modern fuzz testing for web applications. In practical sessions you will learn how to efficiently detect security vulnerabilities and bugs, deep within your source code:  Injections (SQL Injections), Cross-Site Scripting (XSS), Information Leakage, Uncaught Exceptions leading to errors (e.g. NullPointerExeptions), and Crashes (OutOfMemory). 

Due to the current Covid-19 crisis we hosted the conference completely online and 100% free!

The event is hosted by Code Intelligence.

BOOK Ticket

What Can You Expect?

Icon made by icon king from www.freeicons.io
Inspiring Talks
from leading security experts in the software industry
Icon made by icon king from www.freeicons.io
Panel Discussion
about practical use cases of modern fuzzing
Icon made by icon king from www.freeicons.io
Slack Community
to network and exchange ideas with other experts
Icon made by icon king from www.freeicons.io
Q&A Session
to answer all your questions around fuzzing and application security

Become Part of the Fuzzcon Europe Community!

JOIN SLACK COMMUNITY

Speakers @ WebSecurity Edition

abhishek_arya

Abhishek Arya

Principal Software Engineer and Security Researcher 

Google (OSS-Fuzz)

FuzzConMarinaPo2

Marina Polishchuk

Research Software
Engineer

Microsoft Research (RESTler)

khaledyakdan

Khaled Yakdan

CTO and
Co-Founder

Code Intelligence (CI Fuzz)

GMnM8-9z_400x400

Simon Bennetts

Project Lead and
Distinguished Engineer

StackHawk (OWASP ZAP)

BOOK Ticket

Agenda @ WebSecurity Edition

18:00
-
18:15
Warm Welcome & Introduction
18:15
-
18:45
Stateful REST API Fuzzing with RESTler
(Marina Polishchuk // Research Software Engineer // Microsoft Research // RESTler)
18:45
-
19:15
Instrumenting Coverage Guided Fuzzing for the Java Virtual Machine
(Khaled Yakdan // CTO // Code Intelligence)
19:15
-
19:45
Why Fuzzing Web Applications Is Hard!
(Simon Bennetts // Project Lead // StackHawk // OWASP ZAP)
19:45
-
20:15
Abhishek Arya
(Principal Software Engineer // Google // OSS-Fuzz) and Sergej Dechand (CEO // Code Intelligence)
20:15
-
20:45
Panel Discussion: Fuzzing for Web Applications
All Speakers
20:45
-
21:00
Conference Closing

This Was FuzzCon Europe 2020

FuzzCon-Header-Website-1-1

FuzzCon Europe 2020

September 8, 2020 | Event Recording

Get RECORDINGS
FuzzCon_edition-Header-Website-1

FuzzCon Europe -
Automotive Edition

December 2, 2020 | Event Recording

Get RECORDINGS
FuzzCon_WebSec-Header-Website (1)-1-1

FuzzCon Europe -
WebSecurity Edition

March 24, 2021 | Next Online Event

BOOK Ticket

Feedback of Participants

Great talks and lots of interesting tools/techniques to follow up on. Great job organizers and speakers :-)."

FuzzCon Europe 2020

“Interesting to see how an entirely new industry is now growing purely around fuzzing. In conclusion: a very slick event - well done to all involved!”

FuzzCon Europe 2020

Participants
Recording FuzzCon
You Can Not Attend?
We record all talks! Sign up and we will send you the recording after the event.
GET RECORDINGS

What Is Fuzzing?

In recent years, feedback-based fuzzing (or coverage-guided fuzzing) has experienced an unmatched success story. For example, over 27,000 bugs have been found in Chrome and several open-source projects and Google stated that it finds around 80% of its bugs with modern fuzzing techniques. However, fuzzing is not only reserved for big tech companies: It is gradually finding its way into the wide world.

Fuzzing is used for security and stability testing of the codebase. The application under test is fed with a series of inputs, which are smartly mutated in the testing process. The testing tool gets feedback about the code covered during the execution of inputs. Unlike traditional or black-box fuzzing, feedback-based fuzzing explores the program state efficiently and discovers bugs hidden deep in the code. If you want to learn more in detail about the underlying technology, we recommend you to read our blog post The Magic Behind Feedback-based Fuzzing. 

Ready for exciting topics on web security?
Ready for Exciting Insights on Web Security?

Register now and secure your spot at FuzzCon Europe - WebSecurity Edition.

BOOK Ticket
© Code Intelligence GmbH 2021