Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Vulnerabilidades em sistemas web
Search
Sponsored
·
Ship Features Fearlessly
Turn features on and off without deploys. Used by thousands of Ruby developers.
→
Daniel Romero
November 01, 2012
Programming
81
0
Share
Vulnerabilidades em sistemas web
Algumas das vulnerabilidades mais exploradas em aplicações web.
Daniel Romero
November 01, 2012
More Decks by Daniel Romero
See All by Daniel Romero
Segurança on Rails
infoslack
0
120
Other Decks in Programming
See All in Programming
Cache-moi si tu peux : patterns et pièges du cache en production - Devoxx France 2026 - Conférence
slecache
0
220
Reactive ❤️ Loom: A Forbidden Love Story
franz1981
2
240
ふりがな Deep Dive try! Swift Tokyo 2026
watura
0
210
Swift Concurrency Type System
inamiy
0
520
Kubernetes上でAgentを動かすための最新動向と押さえるべき概念まとめ
sotamaki0421
3
490
ハーネスエンジニアリングとは?
kinopeee
7
3.9k
セグメントとターゲットを意識するプロポーザルの書き方 〜採択の鍵は、誰に刺すかを見極めるマーケティング戦略にある〜
m3m0r7
PRO
0
520
実用!Hono RPC2026
yodaka
2
190
AIベース静的検査器の偽陽性率を抑える工夫3選
orgachem
PRO
2
120
CDK Deployのための ”反響定位”
watany
4
750
The Monolith Strikes Back: Why AI Agents ❤️ Rails Monoliths
serradura
0
320
Server-Side Kotlin LT大会 vol.18 [Kotlin-lspの最新情報と Neovimのlsp設定例]
yasunori0418
1
140
Featured
See All Featured
Typedesign – Prime Four
hannesfritz
42
3k
How Software Deployment tools have changed in the past 20 years
geshan
0
33k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
234
17k
Digital Ethics as a Driver of Design Innovation
axbom
PRO
1
260
Chasing Engaging Ingredients in Design
codingconduct
0
170
A Guide to Academic Writing Using Generative AI - A Workshop
ks91
PRO
1
270
The #1 spot is gone: here's how to win anyway
tamaranovitovic
2
1k
Navigating Weather and Climate Data
rabernat
0
170
Ecommerce SEO: The Keys for Success Now & Beyond - #SERPConf2024
aleyda
1
1.9k
The innovator’s Mindset - Leading Through an Era of Exponential Change - McGill University 2025
jdejongh
PRO
1
160
A designer walks into a library…
pauljervisheath
211
24k
Learning to Love Humans: Emotional Interface Design
aarron
275
41k
Transcript
Vulnerabilidades em sistemas web
Primeiros passos • Vulnerabilidades • Técnicas • Ferramentas • OWASP
• SDL
Vulnerabilidades mais conhecidas • Injection • XSS • DdoS •
Top 10 - https://www.owasp.org/index.php/Top_10_2010-Main
SQL Injection • https://www.owasp.org/index.php/SQL_Injection_Prevention_Cheat_Sheet • http://www.unixwiz.net/techtips/sql-injection.html
XSS • https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet • http://hack.us/
DDos • http://ha.ckers.org/slowloris/
Ferramentas • http://sqlmap.org/ - GitHub • http://www.metasploit.com/ - GitHub •
http://arachni-scanner.com/ - GitHub • http://brakemanscanner.org/ - GitHub • http://www.openvas.org/
Prática, hora dos testes
None
Daniel Romero
[email protected]
@infolslack
infoslack
slecache
franz1981
watura
inamiy
sotamaki0421
kinopeee
m3m0r7
yodaka
orgachem
watany
serradura
yasunori0418
hannesfritz
geshan
marcelosomers
axbom
codingconduct
ks91
tamaranovitovic
rabernat
aleyda
jdejongh
pauljervisheath
aarron
![Daniel Romero [email protected] @infolslack](https://files.speakerdeck.com/presentations/5092ba059397c60002004c18/slide_9.jpg){kind=link}