Security Innovation to Run Web Site Hackathons at ToorCon Security Conference

Share Article

Participants will conduct attacks on real-world web sites in a fun and competitive security testing challenge

CMD+CTRL Hackathon

Security Innovation announced today that it will run its CMD+Control Hackathon challenge during the ToorCon conference that will allow attendees to test their hacking skills. The hackathon comprises three vulnerable Web sites where players can immediately immerse themselves in a “find the vulnerabilities” game and apply hacking techniques in a sandboxed environment and earn points for each vulnerability they exploit.

“Security Innovation is a long-time partner of ToorCon, and our engineers look forward to attending every year” said Joe Basirico, VP of Security Services at Security Innovation. “I’m excited at the opportunity to bring Security Innovation’s hackathon to ToorCon who consistently delivers an open and cutting edge program that we’ve been proud to support over the years.”

The CMD+CTRL Hackathon comprises three vulnerable Web sites (Shred Retail, Shadow Bank, and Account All HR) that include functionality you would expect to find in e-commerce, banking, and HR Web sites. With more than 150 vulnerabilities, challenges range from common vulnerabilities such as SQL Injection and Cross-Site Scripting to more advanced cryptanalysis and cipher cracking tests. Each challenge has a point value and discovered vulnerabilities are automatically updated on a live scoreboard. The hackathon also includes guidance assets, coding samples and the ability to buy hints, making it ideal for participants of all skill levels.

Security Innovation will unveil the ToorCon CMD+CTRL Hackathon on Friday of the event. Its principal designers will discuss the strategy behind its design and the interactive experience it provides. The competition runs from Saturday morning until Sunday evening when the winners will be announced. Security Innovation engineers will have a table where participants can ask questions about the challenge or discuss their most sophisticated exploits.

Security Innovation has run similar hackathon challenges at RSA Conference US, RSA Conference Europe, and The Security of Things Conference. The company offers both application and network hackathons as part of its training solution.

About Security Innovation
A software security pioneer since 2002, Security Innovation is dedicated to protecting sensitive data in the world’s most challenging environments – whether on embedded systems, desktops, web applications, mobile devices, or in the cloud. Recognizing that software applications no longer exist in isolation, our clients are better prepared to anticipate, navigate and reduce software security risk regardless of technology or system complexity. There are more than a million licenses of Security Innovation’s training products in use today and our embedded security products ship on tens of millions of systems each year. The company is privately held and is headquartered in Wilmington, MA USA. Visit the company at or follow on Twitter @SecInnovation.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Alli Campofranco
Security Innovation
+1 9782263351
Email >
Follow >
Security Innovation, Inc.
Like >
Visit website