•  

SEC542: Web App Penetration Testing and Ethical Hacking

A session at London Summer 2013

Tuesday 9th July, 2013

9:00am to 5:00pm (GMT)

Web applications are a major point of vulnerability in organizations today. Web app holes have resulted in the theft of millions of credit cards, major financial and reputational damage for hundreds of enterprises, and even the compromise of thousands of browsing machines that visited Web sites altered by attackers. In this intermediate to advanced level class, you'll learn the art of exploiting Web applications so you can find flaws in your enterprise's Web apps before the bad guys do. Through detailed, hands-on exercises and training from a seasoned professional, you will be taught the four-step process for Web application penetration testing. You will inject SQL into back-end databases, learning how attackers exfiltrate sensitive data. You will utilize cross-site scripting attacks to dominate a target infrastructure in our unique hands-on laboratory environment. And you will explore various other Web app vulnerabilities in depth with tried-and-true techniques for finding them using a structured testing regimen. You will learn the tools and methods of the attacker, so that you can be a powerful defender.

About the speaker

This person is speaking at this event.
Dave Shackleford

Opinionated security geek. Owner of Voodoo Security, also CTO of IANS. VMware vExpert. SANS Instructor. Music lover. Unofficial Twitter Fun Gauge for Infosec. bio from Twitter

Sign in to add slides, notes or videos to this session

Tell your friends!

When

Time 9:00am5:00pm GMT

Date Tue 9th July 2013

Short URL

lanyrd.com/scdczm

Official event site

www.sans.org/info/124717

View the schedule

Share

See something wrong?

Report an issue with this session