[Owasp-london] DeveloperDeveloperDeveloper 3
Dinis Cruz
dinis at ddplus.net
Thu May 18 17:22:27 EDT 2006
Just a quick post to say that I am doing a presentation on the next DDD
event (3rd June): http://www.developerday.co.uk/ddd/agendaddd3.asp
/*Attacking Web and Windows Applications* //(Presentation) *Dinis Cruz
<http://www.developerday.co.uk/ddd/speakers.asp#Dinis%20Cruz>
*In this session (a variation of the one delivered in DDD2) multiple
attack vectors will be shown covering a wide variety of vulnerabilities
and exploits: Sql Injection (basic and advanced), XSS (session hijacking
and remote command execution), Elevation of Privilege, Web Services
exploitation, AJAX exploitation, Rootkits (user and kernel level),
attacking fat-clients by hooking into windows functions (and patching
applications in real time), dynamically manipulating .Net client
applications, exploiting buffer overflows, exploiting IE
vulnerabilities, exploiting Full Trust Asp.Net, attacking IIS, and,
using MetaSploit to automate attacks (and exploit generation).
/
Dinis Cruz
Owasp .Net Project
www.owasp.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.owasp.org/pipermail/owasp-london/attachments/20060518/7c66f639/attachment.html
More information about the Owasp-london
mailing list