Upgrade to Pro — share decks privately, control downloads, hide ads and more …

XSS, Session Fixation, and SQLi, Oh my!

Sponsored · Ship Features Fearlessly Turn features on and off without deploys. Used by thousands of Ruby developers.
Avatar for Duo Security Duo Security
September 27, 2012
Technology
4
290

XSS, Session Fixation, and SQLi, Oh my!

Jack Wink at GrrCon 2012:

An introduction to web hacking covering the cause, effect, detection and prevention of common web app vulnerabilities (XSS, session fixation/hijacking, SQLi, and remote code execution) in depth with live demos.

Avatar for Duo Security

Duo Security

September 27, 2012
Tweet

More Decks by Duo Security

See All by Duo Security
IYK4 and So Can You
Avatar for Duo Security duosec
6
360
Trusted Access, Trusted Company
Avatar for Duo Security duosec
8
700
Security Fact & Fiction: Three Lessons from the Headlines
Avatar for Duo Security duosec
2
570
Security for the People: End-User Authentication Security on the Internet
Avatar for Duo Security duosec
4
2k
Internet of Fails: Where IoT Has Gone Wrong and How We're Making it Right
Avatar for Duo Security duosec
1
1.3k
Stay Out of the Kitchen: A DLP Security Bake-Off by Zach Lanier and Kelly Lum
Avatar for Duo Security duosec
1
810
A Place to Hang Our Hats: Security Community and Culture by Domenic Rizzolo
Avatar for Duo Security duosec
3
300
Making Web Development "Secure By Default"
Avatar for Duo Security duosec
2
350
Bob Beck at BSDCan 2014: LibreSSL - An OpenSSL Replacement
Avatar for Duo Security duosec
3
570

Other Decks in Technology

See All in Technology
今こそ学びたいKubernetesネットワーク ~CNIが繋ぐNWとプラットフォームの「フラッと」な対話
Avatar for Takuto Nagami logica0419
2
190
顧客の言葉を、そのまま信じない勇気
Avatar for yamatai12 yamatai1212
1
360
Claude_CodeでSEOを最適化する_AI_Ops_Community_Vol.2__マーケティングx_AIはここまで進化した.pdf
Avatar for 小笠原理久 riku_423
2
610
AI駆動開発を事業のコアに置く
Avatar for 鬼澤輔 tasukuonizawa
1
340
制約が導く迷わない設計 〜 信頼性と運用性を両立するマイナンバー管理システムの実践 〜
Avatar for ないとー bwkw
3
1k
AIと新時代を切り拓く。これからのSREとメルカリIBISの挑戦
Avatar for ktykogm 0gm
2
3k
Bill One急成長の舞台裏 開発組織が直面した失敗と教訓
Avatar for SansanTech sansantech
PRO
2
390
30万人の同時アクセスに耐えたい!新サービスの盤石なリリースを支える負荷試験 / SRE Kaigi 2026
Avatar for GENDA genda
4
1.3k
AzureでのIaC - Bicep? Terraform? それ早く言ってよ会議
Avatar for Toru Makabe torumakabe
1
590
Amazon Bedrock Knowledge Basesチャンキング解説!
Avatar for 野口碧生 aoinoguchi
0
160
顧客との商談議事録をみんなで読んで顧客解像度を上げよう
Avatar for shibayu36 shibayu36
0
280
登壇駆動学習のすすめ — CfPのネタの見つけ方と書くときに意識していること
Avatar for おおいし bicstone
3
130

Featured

See All Featured
End of SEO as We Know It (SMX Advanced Version)
Avatar for Michael King ipullrank
3
3.9k
Getting science done with accelerated Python computing platforms
Avatar for Jacob Tomlinson jacobtomlinson
2
120
Code Reviewing Like a Champion
Avatar for maltzj maltzj
527
40k
Sharpening the Axe: The Primacy of Toolmaking
Avatar for Bryan Cantrill bcantrill
46
2.7k
The AI Revolution Will Not Be Monopolized: How open-source beats economies of scale, even for LLMs
Avatar for Ines Montani inesmontani
PRO
3
3k
Between Models and Reality
Avatar for mayunak mayunak
1
190
Fight the Zombie Pattern Library - RWD Summit 2016
Avatar for Marcelo Somers marcelosomers
234
17k
Jamie Indigo - Trashchat’s Guide to Black Boxes: Technical SEO Tactics for LLMs
Avatar for Tech SEO Connect techseoconnect
PRO
0
63
Tips & Tricks on How to Get Your First Job In Tech
Avatar for Honza Javorek honzajavorek
0
440
Why Your Marketing Sucks and What You Can Do About It - Sophie Logan
Avatar for Sophie Logan marketingsoph
0
76
My Coaching Mixtape
Avatar for mlcsv mlcsv
0
49
Helping Users Find Their Own Way: Creating Modern Search Experiences
Avatar for Dan Newman danielanewman
31
3.1k

Transcript

  1. None
  2. None
  3. None
  4. None
  5. None
  6. None
  7. None
  8. None
  9. None
  10. None
  11. None
  12. None
  13. None
  14. None
  15. None
  16. None
  17. None
  18. None
  19. None
  20. None
  21. None
  22. None
  23. None
  24. None
  25. None
  26. None
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None
  34. None
  35. None
  36. None