Pygoat - Learn Django security the hard way
07-21, 12:30–13:00 (Europe/Prague), Terrace 2B

Learn to secure your Django apps by attacking (and then securing) Pygoat - An intentionally vulnerable Python Django application. Explore the OWASP top 10 vulnerabilities and understand how to mitigate them from Django apps.

Pygoat is an intentionally vulnerable Python Django application that can be used to learn to secure our Django apps. In this talk, we will attack a deployed Pygoat application, identify the underlying security issues in our code, and then secure it. We will learn about common security vulnerabilities (OWASP Top 10) in Django apps and how to fix them so that we can keep our applications safe from attackers.

Expected audience expertise


Adarsh is a Python geek always on the lookout for challenges to solve. While in college, he co-founded multiple startups, one of which was incubated by Startup village collective and seed funded by Kerala Startup Mission. He got the opportunity to pitch his idea at Facebook HQ in Silicon Valley.
Currently, he is working on building Strollby, a travel platform powered by Python microservices and GraphQL backend.
Adarsh started his Speaker journey by presenting at GraphQL Summit ‘22, one of the biggest GraphQL conferences in the world. He focuses on enhancing the Python GraphQL ecosystem in his leisure time by contributing to several open-source projects.

Thameem is a passionate developer who currently works as a Product Engineer - Backend at UST. Thameem completed their undergraduate studies in Electronics and Communication Engineering from TKM College of Engineering. He likes exploring various modern platforms and learning about cutting-edge technologies in software engineering, design & architecture, cyber security, and more.

Thameem finds joy in contributing back to society and was selected for the Microsoft student partner program during his graduation, which helps fellow students develop their technical and career skills for the future. He also volunteered as the webmaster of IEEE, the world's largest professional organization for engineers.