Upgrade to Pro — share decks privately, control downloads, hide ads and more …

XSS, Session Fixation, and SQLi, Oh my!

Duo Security
September 27, 2012
Technology
4
270

XSS, Session Fixation, and SQLi, Oh my!

Jack Wink at GrrCon 2012:

An introduction to web hacking covering the cause, effect, detection and prevention of common web app vulnerabilities (XSS, session fixation/hijacking, SQLi, and remote code execution) in depth with live demos.

Duo Security

September 27, 2012
Tweet

More Decks by Duo Security

See All by Duo Security
IYK4 and So Can You
duosec
6
270
Trusted Access, Trusted Company
duosec
8
660
Security Fact & Fiction: Three Lessons from the Headlines
duosec
2
500
Security for the People: End-User Authentication Security on the Internet
duosec
4
1.9k
Internet of Fails: Where IoT Has Gone Wrong and How We're Making it Right
duosec
1
1k
Stay Out of the Kitchen: A DLP Security Bake-Off by Zach Lanier and Kelly Lum
duosec
1
670
A Place to Hang Our Hats: Security Community and Culture by Domenic Rizzolo
duosec
3
230
Making Web Development "Secure By Default"
duosec
2
300
Bob Beck at BSDCan 2014: LibreSSL - An OpenSSL Replacement
duosec
3
530

Other Decks in Technology

See All in Technology
一生覚えておきたい「システム開発=コミュニケーション」〜初めての実務案件振り返りLT〜
maimyyym
0
130
GraphQL 成熟度モデルの紹介と、プロダクトに当てはめた事例 / GraphQL maturity model
mh4gf
7
1.3k
私が trocco を推す理由
__allllllllez__
1
220
JSON攻略法.pdf
miyakemito
8
5k
長期間TiDBを使ってきた話 @ 私たちはなぜNewSQLを使うのかTiDB選定5社が語る選定理由と活用LT / Experiences with TiDB Over Time
chibiegg
2
890
SPI原点回帰論:事業課題とFour Keysの結節点を見出す実践的ソフトウェアプロセス改善 / DevOpsDays Tokyo 2024
visional_engineering_and_design
4
1.9k
Python と Snowflake はズッ友だょ!~ Snowflake の Python 関連機能をふりかえる ~
__allllllllez__
1
120
開発生産性向上サービスを作るFindyが自分たちで開発生産性を爆上げした組織づくりの歩み / Findy's path to boosting its own development productivity 2024-04-17
ma3tk
3
650
アクセシビリティを考慮したUI/CSSフレームワーク・ライブラリ選定
yajihum
2
1k
コンテナセキュリティの基本と脅威への対策
kyohmizu
3
760
SIEMを用いて、セキュリティログ分析の可視化と分析を実現し、PDCAサイクルを回してみた
coconala_engineer
0
280
競技としてのKaggle、役に立つKaggle
yu4u
2
330

Featured

See All Featured
We Have a Design System, Now What?
morganepeng
43
6.7k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
25
2.3k
How to train your dragon (web standard)
notwaldorf
73
5.2k
Designing the Hi-DPI Web
ddemaree
276
33k
Happy Clients
brianwarren
92
6.4k
WebSockets: Embracing the real-time Web
robhawkes
59
7k
Why You Should Never Use an ORM
jnunemaker
PRO
51
8.6k
Six Lessons from altMBA
skipperchong
21
3k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
187
16k
In The Pink: A Labor of Love
frogandcode
138
21k
Designing for Performance
lara
601
67k
Intergalactic Javascript Robots from Outer Space
tanoku
266
26k

Transcript

  1. None
  2. None
  3. None
  4. None
  5. None
  6. None
  7. None
  8. None
  9. None
  10. None
  11. None
  12. None
  13. None
  14. None
  15. None
  16. None
  17. None
  18. None
  19. None
  20. None
  21. None
  22. None
  23. None
  24. None
  25. None
  26. None
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None
  34. None
  35. None
  36. None