Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
OWASP Top 10 Overview
Search
evandentremont
December 17, 2020
Programming
0
42
OWASP Top 10 Overview
evandentremont
December 17, 2020
Tweet
Share
More Decks by evandentremont
See All by evandentremont
1,2,3,4 I Declare Cyber War
evandentremont
2
1k
Fixing Infosec
evandentremont
0
98
BTC: Currency or Commodity?
evandentremont
0
83
Immunizing IoT
evandentremont
0
79
Defeating Next Gen Firewalls
evandentremont
1
69
Next Gen Botnet C&C
evandentremont
0
75
SQLi Injection attacks & mitigation
evandentremont
0
96
Other Decks in Programming
See All in Programming
Towards Transactional Buffering of CDC Events @ Flink Forward 2025 Barcelona Spain
hpgrahsl
0
120
Node-REDのノードの開発・活用事例とコミュニティとの関わり(Node-RED Con Nagoya 2025)
404background
0
110
Designing Repeatable Edits: The Architecture of . in Vim
satorunooshie
0
200
Blazing Fast UI Development with Compose Hot Reload (droidcon London 2025)
zsmb
0
430
はじめてのDSPy - 言語モデルを『プロンプト』ではなく『プログラミング』するための仕組み
masahiro_nishimi
4
17k
When Dependencies Fail: Building Antifragile Applications in a Fragile World
selcukusta
0
120
組込みだけじゃない!TinyGo で始める無料クラウド開発入門
otakakot
2
380
EMこそClaude Codeでコード調査しよう
shibayu36
0
520
NIKKEI Tech Talk#38
cipepser
0
340
Webサーバーサイド言語としてのRustについて
kouyuume
1
5k
The Past, Present, and Future of Enterprise Java
ivargrimstad
0
440
Leading Effective Engineering Teams in the AI Era
addyosmani
7
680
Featured
See All Featured
Building a Scalable Design System with Sketch
lauravandoore
463
33k
Code Reviewing Like a Champion
maltzj
526
40k
Building Flexible Design Systems
yeseniaperezcruz
329
39k
Intergalactic Javascript Robots from Outer Space
tanoku
273
27k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
231
54k
VelocityConf: Rendering Performance Case Studies
addyosmani
333
24k
GitHub's CSS Performance
jonrohan
1032
470k
A better future with KSS
kneath
239
18k
The Invisible Side of Design
smashingmag
302
51k
Documentation Writing (for coders)
carmenintech
76
5.1k
XXLCSS - How to scale CSS and keep your sanity
sugarenia
249
1.3M
Practical Orchestrator
shlominoach
190
11k
Transcript
None
• • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
None
• • • •
None
• • •
None
None
<?php class file { public $file = “file.txt” public $data
= “some text” function __destruct(){ file_put_contents($this->file, $this->data); } } O:3{:”file”:2:{s:4:”file”;s:12:”file.txt”;s:4:”data”;s:9:”some text”};}
O:3{:”file”:2:{s:4:”file”;s:9:”shell.php”;s:8:”<?php ?>”;s:9:”some text”};} <?php file_put_contents(”shell.php”, “<?php ?>”); ?>
• • • •
None
None
• • • •
• – <script>X</script>, <!--X-->, <div X=”y”>, <X></X>, <style>X</style> • –
<div attr=X>, <div attr=”X”>, <div attr=’X’> • – <script>alert(‘X’), data=’X’, <div onClick=”data=’X’” – selector { property:X;}, <span style=”property:X;”>
None
None
None
• • • •
None
None
• • • • • • •
None
None
None
• • • •
None
• • • • • • •
None
• – • – • –
• – • – • –
• • • • •
None
• • – – •
• • • • • •
None
• • •
None
evandentremont
hpgrahsl
404background
satorunooshie
zsmb
masahiro_nishimi
selcukusta
otakakot
shibayu36
cipepser
kouyuume
ivargrimstad
addyosmani
lauravandoore
maltzj
yeseniaperezcruz
tanoku
destraynor
jonrohan
kneath
smashingmag
carmenintech
sugarenia
shlominoach
