Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
OWASP Top 10 Overview
Search
evandentremont
December 17, 2020
Programming
0
40
OWASP Top 10 Overview
evandentremont
December 17, 2020
Tweet
Share
More Decks by evandentremont
See All by evandentremont
1,2,3,4 I Declare Cyber War
evandentremont
2
980
Fixing Infosec
evandentremont
0
97
BTC: Currency or Commodity?
evandentremont
0
82
Immunizing IoT
evandentremont
0
73
Defeating Next Gen Firewalls
evandentremont
1
67
Next Gen Botnet C&C
evandentremont
0
74
SQLi Injection attacks & mitigation
evandentremont
0
93
Other Decks in Programming
See All in Programming
Startups on Rails in Past, Present and Future–Irina Nazarova, RailsConf 2025
irinanazarova
0
130
Railsアプリケーションと パフォーマンスチューニング ー 秒間5万リクエストの モバイルオーダーシステムを支える事例 ー Rubyセミナー 大阪
falcon8823
5
1.1k
0626 Findy Product Manager LT Night_高田スライド_speaker deck用
mana_takada
0
180
RailsGirls IZUMO スポンサーLT
16bitidol
0
190
状態遷移図を書こう / Sequence Chart vs State Diagram
orgachem
PRO
1
120
Team operations that are not burdened by SRE
kazatohiei
1
310
Node-RED を(HTTP で)つなげる MCP サーバーを作ってみた
highu
0
120
iOS 26にアップデートすると実機でのHot Reloadができない?
umigishiaoi
0
130
10 Costly Database Performance Mistakes (And How To Fix Them)
andyatkinson
0
400
20250704_教育事業におけるアジャイルなデータ基盤構築
hanon52_
5
810
『自分のデータだけ見せたい!』を叶える──Laravel × Casbin で複雑権限をスッキリ解きほぐす 25 分
akitotsukahara
2
640
AI コーディングエージェントの時代へ:JetBrains が描く開発の未来
masaruhr
1
180
Featured
See All Featured
BBQ
matthewcrist
89
9.7k
A Tale of Four Properties
chriscoyier
160
23k
Six Lessons from altMBA
skipperchong
28
3.9k
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
53
2.9k
Side Projects
sachag
455
42k
GitHub's CSS Performance
jonrohan
1031
460k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
138
34k
Into the Great Unknown - MozCon
thekraken
40
1.9k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
251
21k
Performance Is Good for Brains [We Love Speed 2024]
tammyeverts
10
960
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.7k
[RailsConf 2023] Rails as a piece of cake
palkan
55
5.7k
Transcript
None
• • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
• • • • • • • • • •
None
• • • •
None
• • •
None
None
<?php class file { public $file = “file.txt” public $data
= “some text” function __destruct(){ file_put_contents($this->file, $this->data); } } O:3{:”file”:2:{s:4:”file”;s:12:”file.txt”;s:4:”data”;s:9:”some text”};}
O:3{:”file”:2:{s:4:”file”;s:9:”shell.php”;s:8:”<?php ?>”;s:9:”some text”};} <?php file_put_contents(”shell.php”, “<?php ?>”); ?>
• • • •
None
None
• • • •
• – <script>X</script>, <!--X-->, <div X=”y”>, <X></X>, <style>X</style> • –
<div attr=X>, <div attr=”X”>, <div attr=’X’> • – <script>alert(‘X’), data=’X’, <div onClick=”data=’X’” – selector { property:X;}, <span style=”property:X;”>
None
None
None
• • • •
None
None
• • • • • • •
None
None
None
• • • •
None
• • • • • • •
None
• – • – • –
• – • – • –
• • • • •
None
• • – – •
• • • • • •
None
• • •
None
evandentremont
irinanazarova
falcon8823
mana_takada
16bitidol
orgachem
kazatohiei
highu
umigishiaoi
andyatkinson
hanon52_
akitotsukahara
masaruhr
matthewcrist
chriscoyier
skipperchong
tammyeverts
sachag
jonrohan
eileencodes
thekraken
smashingmag
danielanewman
palkan
