So I’m going to run some sessions of Juice Shop internally in my dept. If you’re not familar, Juice Shop is a deliberately insecure app from OWASP (Open Web Application Security Project). For more info, see here: Juice Shop - Insecure Web Application for Training | OWASP
Some 50-70% of the attendees don’t have experience with Juice Shop. My plan is to, depending on number of attendees, have a group session where we take turns driving and navigating, or split the group into breakout rooms and have them work in pairs or small groups.
We have an instance all set up, I’m more looking to see if anyone else has done similar and has any tips/tricks/resources