Upgrade to Pro — share decks privately, control downloads, hide ads and more …

XSS, Session Fixation, and SQLi, Oh my!

Duo Security
September 27, 2012
Technology
4
270

XSS, Session Fixation, and SQLi, Oh my!

Jack Wink at GrrCon 2012:

An introduction to web hacking covering the cause, effect, detection and prevention of common web app vulnerabilities (XSS, session fixation/hijacking, SQLi, and remote code execution) in depth with live demos.

Duo Security

September 27, 2012
Tweet

More Decks by Duo Security

See All by Duo Security
IYK4 and So Can You
duosec
6
290
Trusted Access, Trusted Company
duosec
8
670
Security Fact & Fiction: Three Lessons from the Headlines
duosec
2
520
Security for the People: End-User Authentication Security on the Internet
duosec
4
1.9k
Internet of Fails: Where IoT Has Gone Wrong and How We're Making it Right
duosec
1
1.1k
Stay Out of the Kitchen: A DLP Security Bake-Off by Zach Lanier and Kelly Lum
duosec
1
720
A Place to Hang Our Hats: Security Community and Culture by Domenic Rizzolo
duosec
3
240
Making Web Development "Secure By Default"
duosec
2
310
Bob Beck at BSDCan 2014: LibreSSL - An OpenSSL Replacement
duosec
3
540

Other Decks in Technology

See All in Technology
いざ、BSC討伐の旅
nikinusu
2
780
dev 補講: プロダクトセキュリティ / Product security overview
wa6sn
1
2.3k
Evangelismo técnico: ¿qué, cómo y por qué?
trishagee
0
360
Oracle Cloud Infrastructure データベース・クラウド:各バージョンのサポート期間
oracle4engineer
PRO
28
12k
Security-JAWS【第35回】勉強会クラウドにおけるマルウェアやコンテンツ改ざんへの対策
4su_para
0
180
ハイパーパラメータチューニングって何をしているの
toridori_dev
0
140
Why App Signing Matters for Your Android Apps - Android Bangkok Conference 2024
akexorcist
0
120
社内で最大の技術的負債のリファクタリングに取り組んだお話し
kidooonn
1
550
Terraform未経験の御様に対してどの ように導⼊を進めていったか
tkikuchi
2
430
AWS Media Services 最新サービスアップデート 2024
eijikominami
0
200
Lambda10周年!Lambdaは何をもたらしたか
smt7174
2
110
CysharpのOSS群から見るModern C#の現在地
neuecc
2
3.2k

Featured

See All Featured
A Modern Web Designer's Workflow
chriscoyier
693
190k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
eileencodes
16
2.1k
The Language of Interfaces
destraynor
154
24k
Rails Girls Zürich Keynote
gr2m
94
13k
Done Done
chrislema
181
16k
YesSQL, Process and Tooling at Scale
rocio
169
14k
Building Applications with DynamoDB
mza
90
6.1k
The Straight Up "How To Draw Better" Workshop
denniskardys
232
140k
Git: the NoSQL Database
bkeepers
PRO
427
64k
Fantastic passwords and where to find them - at NoRuKo
philnash
50
2.9k
Site-Speed That Sticks
csswizardry
0
23
Visualization
eitanlees
145
15k

Transcript

  1. None
  2. None
  3. None
  4. None
  5. None
  6. None
  7. None
  8. None
  9. None
  10. None
  11. None
  12. None
  13. None
  14. None
  15. None
  16. None
  17. None
  18. None
  19. None
  20. None
  21. None
  22. None
  23. None
  24. None
  25. None
  26. None
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None
  34. None
  35. None
  36. None