🧃 Juice Shop Update³

German OWASP Day 2023

by Björn Kimminich / @bkimminich

https://owasp-juice.shop

Juice Shop Success Pyramid™

Some amazing facts & stats about the project

Official `juice-shop` GitHub Org

All repos belonging to the project in one place at https://github.com/juice-shop

🆕 Features

from 2020-2023

Coding Challenges

Find code flaw and select appropriate fix for several challenges

Cheat Detection

Solved challenges are rated based on cheating probability

Support Chatbot

Blends NLP, AI and ML into a delicious Turing-Test-🍹

Local Backup

Save and later restore your hacking progress as well as language, Score Board filters, banner dismissal to a JSON file

{
  "version": 1,
  "scoreBoard": {
	"displayedDifficulties": [ 1, 2 ],
	"displayedChallengeCategories": [
	  "Broken Access Control",
	  "Broken Anti Automation"
	]
  },
  "banners": {
	"welcomeBannerStatus": "dismiss",
	"cookieConsentStatus": "dismiss"
  },
  "language": "de_DE",
  "continueCode": "rzJa4Xpa...57LBN7Xv7o"
}

🎊🎉Confetti cannon🎉🎊

Whenever a challenge is solved, a confetti cannon fires

Official Tutorials

Presentations, snippets and step-by-step guides for advanced topics

Customization - Build a theme in 18 easy steps
Integration - Siphon juicy data in 5 different ways

Solution Webhook

Sends a payload to a specified URL whenever a challenge is solved

{
    "solution": {
        "challenge": "localXssChallenge",
        "cheatScore": 0,
        "totalCheatScore": 0.15,
        "issuedOn": "2020-12-15T18:24:33.027Z"
    },
    "ctfFlag": "b0d70dce...b85fac6785dba2349b",
    "issuer": {
        "hostName": "fv-az116-673",
        "os": "Linux (5.4.0-1031-azure)",
        "appName": "OWASP Juice Shop",
        "config": "default",
        "version": "12.3.0-SNAPSHOT"
    }
}