Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Vulnerabilidades em sistemas web
Search
Daniel Romero
November 01, 2012
Programming
0
73
Vulnerabilidades em sistemas web
Algumas das vulnerabilidades mais exploradas em aplicações web.
Daniel Romero
November 01, 2012
Tweet
Share
More Decks by Daniel Romero
See All by Daniel Romero
Segurança on Rails
infoslack
0
94
Other Decks in Programming
See All in Programming
Devin入門と最近のアップデートから見るDevinの進化 / Introduction to Devin and the Evolution of Devin as Seen in Recent Update
rkaga
9
4.8k
PHPで書いたAPIをGoに書き換えてみた 〜パフォーマンス改善の可能性を探る実験レポート〜
koguuum
0
150
AHC045_解説
shun_pi
0
510
List とは何か? / PHPerKaigi 2025
meihei3
0
790
プロダクト横断分析に役立つ、事前集計しないサマリーテーブル設計
hanon52_
2
420
生成AIを使ったQAアプリケーションの作成 - ハンズオン補足資料
oracle4engineer
PRO
3
210
State of Namespace
tagomoris
4
970
エンジニア未経験が最短で戦力になるためのTips
gokana
0
270
マルチアカウント環境での、そこまでがんばらない RI/SP 運用設計
wa6sn
0
720
gen_statem - OTP's Unsung Hero
whatyouhide
1
200
MCP世界への招待: AIエンジニアが創る次世代エージェント連携の世界
gunta
4
890
新しいPHP拡張モジュールインストール方法「PHP Installer for Extensions (PIE)」を使ってみよう!
cocoeyes02
0
370
Featured
See All Featured
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
251
21k
Building a Scalable Design System with Sketch
lauravandoore
462
33k
Large-scale JavaScript Application Architecture
addyosmani
512
110k
Typedesign – Prime Four
hannesfritz
41
2.6k
XXLCSS - How to scale CSS and keep your sanity
sugarenia
248
1.3M
Making the Leap to Tech Lead
cromwellryan
133
9.2k
Reflections from 52 weeks, 52 projects
jeffersonlam
349
20k
For a Future-Friendly Web
brad_frost
176
9.7k
Bash Introduction
62gerente
611
210k
[RailsConf 2023 Opening Keynote] The Magic of Rails
eileencodes
29
9.4k
Optimising Largest Contentful Paint
csswizardry
36
3.2k
Performance Is Good for Brains [We Love Speed 2024]
tammyeverts
9
740
Transcript
Vulnerabilidades em sistemas web
Primeiros passos • Vulnerabilidades • Técnicas • Ferramentas • OWASP
• SDL
Vulnerabilidades mais conhecidas • Injection • XSS • DdoS •
Top 10 - https://www.owasp.org/index.php/Top_10_2010-Main
SQL Injection • https://www.owasp.org/index.php/SQL_Injection_Prevention_Cheat_Sheet • http://www.unixwiz.net/techtips/sql-injection.html
XSS • https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet • http://hack.us/
DDos • http://ha.ckers.org/slowloris/
Ferramentas • http://sqlmap.org/ - GitHub • http://www.metasploit.com/ - GitHub •
http://arachni-scanner.com/ - GitHub • http://brakemanscanner.org/ - GitHub • http://www.openvas.org/
Prática, hora dos testes
None
Daniel Romero
[email protected]
@infolslack
infoslack
rkaga
koguuum
shun_pi
meihei3
hanon52_
oracle4engineer
tagomoris
gokana
wa6sn
whatyouhide
gunta
cocoeyes02
smashingmag
lauravandoore
addyosmani
hannesfritz
sugarenia
cromwellryan
jeffersonlam
brad_frost
62gerente
eileencodes
csswizardry
tammyeverts
![Daniel Romero [email protected] @infolslack](https://files.speakerdeck.com/presentations/5092ba059397c60002004c18/slide_9.jpg){kind=link}