This month Caolan will provide some intentionally insecure Node.js programs for us to experiment with. We'll split up into two teams: one will attempt to demonstrate a working exploit, the other will attempt to mitigate the attack by fixing the program.
The security holes will be very straight-forward and easy to understand but will hopefully serve as a talking point to discuss the risks associated.
You do not need to be 1337 to attend, but please bring a laptop if you can. Bonus points if you have Node.js installed (nodejs.org).
to
(Europe/London time)
Union St is on the corner opposite First Point - see www.union-st.org