i r web app hacking (and so can you!)

DerbyCon 4.0 - Family Rootz

Presented by: Brandon Perry
Date: Saturday September 27, 2014
Time: 15:00 - 15:25
Location: Stable Talks

Web apps are easy if you know what to look for. The same mistakes are made over and over again. It’s the interesting bugs that keep you on your toes though. The bugs living in the darkest corners of bus-factor-0 code. I will be going over various tools and techniques I use when gleaning exploits from vulnerabilities found- ranging from RCE to XXE. There will be demos of automating finding common vulnerabilities- and demos of active exploitation. Common and custom tools will be used (custom tools available on github).

Brandon Perry


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats