💬 Workshop Chat — share messages and code snippets live. Ask the host for the PIN or scan the QR code on the beamer.
Join Chat

Hack, Fix, Discuss! AI Security Edition

Welcome to the AI security edition of GroningenPHP workshops! Today, we're auditing code generated by AI. While LLMs are great for productivity, they often "hallucinate" security measures or suggest outdated, vulnerable patterns.

Workshop Structure (The "Duel" Cycle):
1
Hack & Fix (In Parallel)
Team Red: Find and exploit vulnerabilities in the code. Team Blue: Audit and patch the same code to secure it. Both teams work simultaneously on the same challenge!
2
The "Showdown" & Discuss

We test Team Red's payloads against Team Blue's fixed code. Then we discuss why the AI failed and how the fix works.

3
Repeat & Switch

Move to the next challenge, switch roles between Team Red and Team Blue, and start the next round!

1. Your Sandbox

We'll use OneCompiler to run our code. It's a free online PHP evaluator that supports common extensions like PDO (SQLite).


Workshop Challenges

Work through these challenges with your team. Good luck!

Copied to clipboard!