Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
OWASP Top 10 Overview
Search
Sponsored
·
Your Podcast. Everywhere. Effortlessly.
Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
→
evandentremont
December 17, 2020
Programming
48
0
Share
OWASP Top 10 Overview
evandentremont
December 17, 2020
More Decks by evandentremont
See All by evandentremont
1,2,3,4 I Declare Cyber War
evandentremont
2
1k
Fixing Infosec
evandentremont
0
110
BTC: Currency or Commodity?
evandentremont
0
90
Immunizing IoT
evandentremont
0
92
Defeating Next Gen Firewalls
evandentremont
1
80
Next Gen Botnet C&C
evandentremont
0
85
SQLi Injection attacks & mitigation
evandentremont
0
110
Other Decks in Programming
See All in Programming
AI Agent と正しく分析するための環境作り
yoshyum
3
630
Talking to terminals (and how they talk back) (KotlinConf 2026)
jakewharton
PRO
1
150
AI 時代のソフトウェア設計の学び方
masuda220
PRO
28
11k
プラグインで拡張される Context をtype-safe にする難しさと設計判断
kazupon
2
420
新規プロダクトを高速で生み出すハーネスエンジニアリング
seanchas116
15
6.9k
関係性から理解する"同一性"の型用語たち
pvcresin
2
600
New "Type" system on PicoRuby
pocke
1
280
技術記事、AIに書かせるか、自分で書くか? 〜それでも私が自分の手で書く理由〜 / #QiitaConference
jnchito
2
1.2k
[BalkanRuby 2026] Drop your app/services!
palkan
3
710
OSもどきOS
arkw
0
260
~ 秘伝のタレ化した『神スプシ』と戦う ~ 関数型パラダイムで壊れない仕組みへ
h0r15h0
1
140
さぁV100、メモリをお食べ・・・
nilpe
0
100
Featured
See All Featured
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
stephaniewalter
287
14k
Learning to Love Humans: Emotional Interface Design
aarron
275
41k
Conquering PDFs: document understanding beyond plain text
inesmontani
PRO
4
2.8k
For a Future-Friendly Web
brad_frost
183
10k
Reality Check: Gamification 10 Years Later
codingconduct
0
2.2k
Abbi's Birthday
coloredviolet
2
7.8k
Navigating Weather and Climate Data
rabernat
0
200
A Modern Web Designer's Workflow
chriscoyier
698
190k
HDC tutorial
michielstock
2
680
Noah Learner - AI + Me: how we built a GSC Bulk Export data pipeline
techseoconnect
PRO
0
190
The Illustrated Children's Guide to Kubernetes
chrisshort
51
52k
End of SEO as We Know It (SMX Advanced Version)
ipullrank
3
4.2k
Transcript
None
• • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
None
• • • •
None
• • •
None
None
<?php class file { public $file = “file.txt” public $data
= “some text” function __destruct(){ file_put_contents($this->file, $this->data); } } O:3{:”file”:2:{s:4:”file”;s:12:”file.txt”;s:4:”data”;s:9:”some text”};}
O:3{:”file”:2:{s:4:”file”;s:9:”shell.php”;s:8:”<?php ?>”;s:9:”some text”};} <?php file_put_contents(”shell.php”, “<?php ?>”); ?>
• • • •
None
None
• • • •
• – <script>X</script>, <!--X-->, <div X=”y”>, <X></X>, <style>X</style> • –
<div attr=X>, <div attr=”X”>, <div attr=’X’> • – <script>alert(‘X’), data=’X’, <div onClick=”data=’X’” – selector { property:X;}, <span style=”property:X;”>
None
None
None
• • • •
None
None
• • • • • • •
None
None
None
• • • •
None
• • • • • • •
None
• – • – • –
• – • – • –
• • • • •
None
• • – – •
• • • • • •
None
• • •
None
evandentremont
yoshyum
jakewharton
masuda220
kazupon
seanchas116
pvcresin
pocke
jnchito
palkan
arkw
h0r15h0
nilpe
stephaniewalter
aarron
inesmontani
brad_frost
codingconduct
coloredviolet
rabernat
chriscoyier
michielstock
techseoconnect
chrisshort
ipullrank
