1 / 3

Security Lecture Overview: Application Logic Flaws and Bespoke Attack Automation

In this week's Security Lecture at the National Chengchi University, Eric will present techniques for attacking application logic flaws, focusing on Chapter 10 of our course material. Rue-June will discuss the automation of bespoke attacks based on Chapter 13. Additionally, Tony will lead a discussion on the paper "Prophiler: A Fast Filter for the Large-Scale Detection of Malicious Web Pages," presented at WWW 2011. Next week, presentations will cover path traversal, hacker toolkits, and browser extension vulnerabilities. Students will also start with Burp Intruder tool demonstrations.

edena
Télécharger la présentation

Security Lecture Overview: Application Logic Flaws and Bespoke Attack Automation

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Software SecurityLecture 6 Fang Yu Dept. of MIS, National Chengchi University Spring 2011

  2. Outline • Today we will have Eric presenting how to attack application logic flaws (Ch10) and Rue-June presenting how to automating bespoke (custom made) attacks (Ch13) • We will also have Tony lead the discussion on the paper: Prophiler: a Fast Filter for the Large-Scale Detection of Malicious Web Page, WWW 2011 • The course website : • http://soslab.nccu.edu.tw/Courses.html

  3. Next Week We will have Hsin presenting Exploring Path Traversal (Chapter 10), Kuan-Ming presenting Hacker’s Toolkit (Chapter 19) We will also have Adam lead the discussion on the paper: Protecting Browsers from Extension Vulnerabilities, NDSS 2010 We will also have the first tool presentation for Burp Intruder, which can help you to achieve automating bespoke attacks.

More Related