Web Insecurity and Browser Exploitation
antisnatchor — 18 February, 2010 - 16:29
Finally I've got some free time to update my blog, and post about my latest security seminar: it was in Munich, Germany, on 20th January 2010. It has been a great experience, mainly because some friends from University invited me to speak there, and the beer was so flavored.
Understand how attackers can exploit common and uncommon flaws of web applications, how they can break data confidentiality and alter data integrity is vital to ensure security respecting the principle "The only way to stop a Hacker is to think like one".
The presentation cover common flaws and uncommon flaws. The first ones will be easily understood by unskilled people, the latter combined with advanced techniques such as XSS proxies can become devastating in classic security policy environments such as Discretionary Access Control.
For the Browser Exploitation part I've made a dedicated screencast: you can reach it on my Vimeo channel.
Understand how attackers can exploit common and uncommon flaws of web applications, how they can break data confidentiality and alter data integrity is vital to ensure security respecting the principle "The only way to stop a Hacker is to think like one".
The presentation cover common flaws and uncommon flaws. The first ones will be easily understood by unskilled people, the latter combined with advanced techniques such as XSS proxies can become devastating in classic security policy environments such as Discretionary Access Control.
For the Browser Exploitation part I've made a dedicated screencast: you can reach it on my Vimeo channel.
Web Insecurity And Browser Exploitation
View more presentations from Michele Orru’.
