OWASP Top 10 Overview

December 17, 2020

44

OWASP Top 10 Overview

evandentremont

December 17, 2020

Tweet

More Decks by evandentremont

See All by evandentremont

1,2,3,4 I Declare Cyber War

2

1k

0

100

BTC: Currency or Commodity?

0

85

0

86

Defeating Next Gen Firewalls

1

73

Next Gen Botnet C&C

0

80

SQLi Injection attacks & mitigation

0

100

Other Decks in Programming

See All in Programming

20260313 - Grafana & Friends Taipei #1 - Kubernetes v1.36 的開發雜記：那些困在 Alpha 加護病房太久的 Metrics

0

240

Strategy for Finding a Problem for OSS: With Real Examples

0

120

The Past, Present, and Future of Enterprise Java

0

1.2k

OTP を自動で入力する裏技

0

130

Kubernetesでセルフホストが簡単なNewSQLを求めて / Seeking a NewSQL Database That's Simple to Self-Host on Kubernetes

0

190

Everything Claude Code OSS詳細 — 5層構造の中身と導入方法

0

160

「効かない！」依存性注入（DI）を活用したAPI Platformのエラーハンドリング奮闘記

0

280

Symfony + NelmioApiDocBundle を使ったスキーマ駆動開発 / Schema Driven Development with NelmioApiDocBundle

0

250

それはエンジニアリングの糧である：AI開発のためにAIのOSSを開発する現場より / It serves as fuel for engineering: insights from the field of developing open-source AI for AI development.

1

670

条件判定に名前、つけてますか？ #phperkaigi #c

2

870

20260315 AWSなんもわからん🥲

2

180

ローカルで稼働するAI エージェントを超えて / beyond-local-ai-agents

1

190

Featured

See All Featured

DBのスキルで生き残る技術 - AI時代におけるテーブル設計の勘所

PRO

64

53k

Embracing the Ebb and Flow

88

5k

Winning Ecommerce Organic Search in an AI Era - #searchnstuff2025

1

1.9k

Leo the Paperboy

5

1.6k

How to train your dragon (web standard)

97

6.6k

Leading Effective Engineering Teams in the AI Era

9

1.8k

How to audit for AI Accessibility on your Front & Back End

0

230

30

1.4k

Imperfection Machines: The Place of Print at Facebook

269

14k

Building Adaptive Systems

44

3k

Building a A Zero-Code AI SEO Workflow

PRO

0

420

Ruling the World: When Life Gets Gamed

0

190

Transcript

None
• • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
None
• • • •
None
• • •
None
None
<?php class file { public $file = “file.txt” public $data
= “some text” function __destruct(){ file_put_contents($this->file, $this->data); } } O:3{:”file”:2:{s:4:”file”;s:12:”file.txt”;s:4:”data”;s:9:”some text”};}
O:3{:”file”:2:{s:4:”file”;s:9:”shell.php”;s:8:”<?php ?>”;s:9:”some text”};} <?php file_put_contents(”shell.php”, “<?php ?>”); ?>
• • • •
None
None
• • • •
• – <script>X</script>, , <div X=”y”>, <X></X>, <style>X</style> • –
<div attr=X>, <div attr=”X”>, <div attr=’X’> • – <script>alert(‘X’), data=’X’, <div onClick=”data=’X’” – selector { property:X;}, <span style=”property:X;”>
None
None
None
• • • •
None
None
• • • • • • •
None
None
None
• • • •
None
• • • • • • •
None
• – • – • –
• – • – • –
• • • • •
None
• • – – •
• • • • • •
None
• • •
None