[LRUG] [COURSES] Rails security workshop challenges
Najaf Ali
ali at happybearsoftware.com
Thu Oct 30 02:30:05 PDT 2014
Dearest LRUG,
For a few years I've been running a Rails Security Workshop which seems to
get good feedback. For those of you that haven't heard of it, it's a
one-day session that gets attendees to use their technical skills to
exploit a series of insecure Rails applications. The goal of the day is to
make developers more aware of security issues by making them implement
attacks by hand.
On my part the public workshop requires a lot of organising, sales calls,
venue costs and other prep work to run profitably. I find actually running
the day quite stressful. For those and other reasons it doesn't make much
sense for me to run it for less than around £400 per seat. That's out of
the price range of many individual developers. And with a two-year-old at
home and another boy on the way in January, running another public workshop
is probably off the cards for a while!
For those of you who would like to have a crack at the challenges in your
own time, I'm making the workshop exercises available as a standalone
product. It includes email support from me as well in case you get stuck or
need feedback.
The package is very much at a beta stage, but to get it in front of people
I'm selling the beta now for $67, going up to around $97 later. As LRUG is
sort of where this whole security workshop thing started out, you can get a
further $30 off with the code *ruglife *(good for 100 sales). This includes
all future updates to this package even after the price increases. Future
updates will include content going into detail on the vulnerabilities in
the challenges and how to avoid them in your code.
If for whatever reason you don't think the challenges are worth what you
paid for them, email me and I'll initiate a refund ASAP.
Here's the landing page
<http://www.happybearsoftware.com/rails-security-challenges>, or if you
just want to buy the thing you can do so directly via gumroad
<https://gumroad.com/l/uAWT>. If you have any questions about the
challenges, Rails security, good steak restaurants in London, advanced
nappy-changing technique or anything you like really then shoot me an email
at this address.
Cheers,
-Ali
*P.S. If you've done the in-person workshop and you or your company paid
for a ticket, let me know over email and I'll give you a code to get the
bundle free of charge.*
*P.P.S. If you don't feel like paying me any money today but want some
security advice all the same, you can get an email course covering the
absolute basics of Rails security here
<http://www.happybearsoftware.com/rails-security-fundamentals>. There's a
sales pitch at the end of it for the challenges which you're free to
ignore.*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.lrug.org/pipermail/chat-lrug.org/attachments/20141030/61835019/attachment-0003.html>
More information about the Chat
mailing list