Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Vulnerabilidades em sistemas web
Search
Sponsored
·
SiteGround - Reliable hosting with speed, security, and support you can count on.
→
Daniel Romero
November 01, 2012
Programming
0
79
Vulnerabilidades em sistemas web
Algumas das vulnerabilidades mais exploradas em aplicações web.
Daniel Romero
November 01, 2012
Tweet
Share
More Decks by Daniel Romero
See All by Daniel Romero
Segurança on Rails
infoslack
0
120
Other Decks in Programming
See All in Programming
nilとは何か 〜interfaceの構造とnil!=nilから理解する〜
kuro_kurorrr
3
1.7k
Claude Codeセッション現状確認 2026福岡 / fukuoka-aicoding-00-beacon
monochromegane
4
400
Claude Code の Skill で複雑な既存仕様をすっきり整理しよう
yuichirokato
1
310
Railsの気持ちを考えながらコントローラとビューを整頓する/tidying-rails-controllers-and-views-as-rails-think
moro
4
380
今、アーキテクトとして 品質保証にどう関わるか
nealle
0
200
The Past, Present, and Future of Enterprise Java
ivargrimstad
0
410
Claude Code、ちょっとした工夫で開発体験が変わる
tigertora7571
0
200
Go 1.26でのsliceのメモリアロケーション最適化 / Go 1.26 リリースパーティ #go126party
mazrean
1
360
Codex の「自走力」を高める
yorifuji
0
1k
New in Go 1.26 Implementing go fix in product development
sunecosuri
0
370
メタプログラミングで実現する「コードを仕様にする」仕組み/nikkei-tech-talk43
nikkei_engineer_recruiting
0
160
Agentic AI: Evolution oder Revolution
mobilelarson
PRO
0
110
Featured
See All Featured
Mobile First: as difficult as doing things right
swwweet
225
10k
brightonSEO & MeasureFest 2025 - Christian Goodrich - Winning strategies for Black Friday CRO & PPC
cargoodrich
3
120
Producing Creativity
orderedlist
PRO
348
40k
Measuring & Analyzing Core Web Vitals
bluesmoon
9
770
The B2B funnel & how to create a winning content strategy
katarinadahlin
PRO
1
290
Marketing to machines
jonoalderson
1
5k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
367
27k
Evolving SEO for Evolving Search Engines
ryanjones
0
150
More Than Pixels: Becoming A User Experience Designer
marktimemedia
3
340
A designer walks into a library…
pauljervisheath
210
24k
How to audit for AI Accessibility on your Front & Back End
davetheseo
0
210
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
133
19k
Transcript
Vulnerabilidades em sistemas web
Primeiros passos • Vulnerabilidades • Técnicas • Ferramentas • OWASP
• SDL
Vulnerabilidades mais conhecidas • Injection • XSS • DdoS •
Top 10 - https://www.owasp.org/index.php/Top_10_2010-Main
SQL Injection • https://www.owasp.org/index.php/SQL_Injection_Prevention_Cheat_Sheet • http://www.unixwiz.net/techtips/sql-injection.html
XSS • https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet • http://hack.us/
DDos • http://ha.ckers.org/slowloris/
Ferramentas • http://sqlmap.org/ - GitHub • http://www.metasploit.com/ - GitHub •
http://arachni-scanner.com/ - GitHub • http://brakemanscanner.org/ - GitHub • http://www.openvas.org/
Prática, hora dos testes
None
Daniel Romero
[email protected]
@infolslack
SiteGround - Reliable hosting with speed, security, and support you can count on.
infoslack
kuro_kurorrr
monochromegane
yuichirokato
moro
nealle
ivargrimstad
tigertora7571
mazrean
yorifuji
sunecosuri
nikkei_engineer_recruiting
mobilelarson
swwweet
cargoodrich
orderedlist
bluesmoon
katarinadahlin
jonoalderson
cassininazir
ryanjones
marktimemedia
pauljervisheath
davetheseo
morganepeng
![Daniel Romero [email protected] @infolslack](https://files.speakerdeck.com/presentations/5092ba059397c60002004c18/slide_9.jpg){kind=link}