Talk on Common Web Vulnerabilities

I recently gave a talk on common web vulnerabilities with my colleague Scott Kirkland (see a link to his blog on the right) at the 2011 IT Security Symposium at UC Davis.  If you attended the session, hope you enjoyed it!  Otherwise we’ve posted the demo and the slide deck on Github.

We covered topics such as SSL, SQL Encryption, Cross Site Scripting (XSS), Cookie Policies, Html Encoding, Cross Site Request Forgery (CSRF) and Insecure Direct Object Reference.

The demo is also bundled with Scott’s talk on Data Validation and Html5.

You can find the demo and slides here.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s