Save 37% off PRO during our
Black Friday Sale! »
Speaker Deck
Speaker Deck
PRO
Sign in
Sign up for free
Vulnerabilidades em sistemas web
Daniel Romero
November 01, 2012
Programming
0
64
Vulnerabilidades em sistemas web
Algumas das vulnerabilidades mais exploradas em aplicações web.
Daniel Romero
November 01, 2012
Tweet
Share
More Decks by Daniel Romero
See All by Daniel Romero
infoslack
0
62
Other Decks in Programming
See All in Programming
palkan
2
130
horie1024
3
2.7k
mot_techtalk
0
150
pauloxnet
1
140
nakabonne
1
260
psadauskas
0
200
bo0km4n
2
420
hschwentner
2
690
mimimimizuki
0
530
champon1020
0
520
webdevwithmatt
0
290
tak_iwamoto
2
1.3k
Featured
See All Featured
hatefulcrawdad
256
17k
hannesfritz
32
1.2k
brad_frost
163
6.9k
schacon
152
6.9k
lauravandoore
443
29k
moore
129
22k
brianwarren
88
5.3k
bkeepers
PRO
324
54k
lara
27
3.5k
cromwellryan
107
6.6k
reverentgeek
37
2.9k
roundedbygravity
85
8.2k
Transcript
Vulnerabilidades em sistemas web
Primeiros passos • Vulnerabilidades • Técnicas • Ferramentas • OWASP
• SDL
Vulnerabilidades mais conhecidas • Injection • XSS • DdoS •
Top 10 - https://www.owasp.org/index.php/Top_10_2010-Main
SQL Injection • https://www.owasp.org/index.php/SQL_Injection_Prevention_Cheat_Sheet • http://www.unixwiz.net/techtips/sql-injection.html
XSS • https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet • http://hack.us/
DDos • http://ha.ckers.org/slowloris/
Ferramentas • http://sqlmap.org/ - GitHub • http://www.metasploit.com/ - GitHub •
http://arachni-scanner.com/ - GitHub • http://brakemanscanner.org/ - GitHub • http://www.openvas.org/
Prática, hora dos testes
None
Daniel Romero infoslack@gmail.com @infolslack
infoslack
palkan
horie1024
mot_techtalk
pauloxnet
nakabonne
psadauskas
bo0km4n
hschwentner
mimimimizuki
champon1020
webdevwithmatt
tak_iwamoto
hatefulcrawdad
hannesfritz
brad_frost
schacon
lauravandoore
moore
brianwarren
bkeepers
lara
cromwellryan
reverentgeek
roundedbygravity
