CSRF_RSA_2008_Jeremiah_Grossman

•

12 gefällt mir•2,097 views

guestdb261a

Technologie

Cross-Site Request Forgery
“The Sleeping Giant of Website Vulnerabilities”
Jeremiah Grossman | WhiteHat Security | 04/09/08 | Session Code: HT1-20304

Jeremiah Grossman
– WhiteHat Security Founder CTO
– Technology R and industry evangelist
(Named to InfoWorld's CTO Top 25 for 2007)
– Frequent international conference speaker
– Co-founder of the Web Application
Security Consortium
– Co-author: Cross-Site Scripting Attacks
– Former Yahoo! information security officer

Focus on “custom web applications”
Vulnerability Stack
WhiteHat
Security

“well-known”
vulnerabilities
Symantec
Qualys
Nessus
nCircle

Weitere ähnliche Inhalte

Ähnlich wie CSRF_RSA_2008_Jeremiah_Grossman

The cyber house of horrors - securing the expanding attack surfaceJason Bloomberg

Palmer SymposiumEd Bellis

Cyber Security for Oil and Gas mariaidga

Solvay secure application layer v2015 sebaSebastien Deleersnyder

Beza belayneh information_warfare_briefBeza Belayneh

54 Chapter 1 • The Threat EnvironmentFIGURE 1-18 Cyberwar .docxalinainglis

Why Federal Systems are Immune from Ransomware...& other Grim Fairy Tales)BeyondTrust

Open Source Insight: Amazon Servers Exposed Open Source & the Public Sector...Black Duck by Synopsys

Future of Destructive MalwareGreg Foss

DNS Cybersecurity in 2012-2015Andrzej Bartosiewicz

Top Ten Web Hacking Techniques – 2008Jeremiah Grossman

Information Security: We are all InfoSec (updated for 2018)Michael Swinarski

Web security-–-everything-we-know-is-wrong-eoin-kearydrewz lin

THE SIGNIFICANCE OF CYBERSECURITY HilalHarris

Dissecting ssl threatsZscaler

Get Ready for Web Application Security TestingAlan Kan

Think Like a HackerNormShield, Inc.

Practical risk management for the multi cloudUlf Mattsson

Introduction to Software Security and Best PracticesMaxime ALAY-EDDINE

DSS ITSEC CONFERENCE - Lumension Security - Intelligent application whiteli...Andris Soroka

Ähnlich wie CSRF_RSA_2008_Jeremiah_Grossman (20)

The cyber house of horrors - securing the expanding attack surface

Palmer Symposium

Cyber Security for Oil and Gas

Solvay secure application layer v2015 seba

Beza belayneh information_warfare_brief

54 Chapter 1 • The Threat EnvironmentFIGURE 1-18 Cyberwar .docx

Why Federal Systems are Immune from Ransomware...& other Grim Fairy Tales)

Open Source Insight: Amazon Servers Exposed Open Source & the Public Sector...

Future of Destructive Malware

DNS Cybersecurity in 2012-2015

Top Ten Web Hacking Techniques – 2008

Information Security: We are all InfoSec (updated for 2018)

Web security-–-everything-we-know-is-wrong-eoin-keary

THE SIGNIFICANCE OF CYBERSECURITY

Dissecting ssl threats

Get Ready for Web Application Security Testing

Think Like a Hacker

Practical risk management for the multi cloud

Introduction to Software Security and Best Practices

DSS ITSEC CONFERENCE - Lumension Security - Intelligent application whiteli...

Kürzlich hochgeladen

Vulnerability_Management_GRC_by Sohang Sengupta.pptxnull - The Open Security Community

Pigging Solutions Piggable Sweeping ElbowsPigging Solutions

IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge

#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada

Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersThousandEyes

Benefits Of Flutter Compared To Other FrameworksSoftradix Technologies

Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...HostedbyConfluent

08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls

Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software

Slack Application Development 101 Slidespraypatel2

Understanding the Laravel MVC ArchitecturePixlogix Infotech

Next-generation AAM aircraft unveiled by Supernal, S-A2Hyundai Motor Group

Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix

E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxnull - The Open Security Community

My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar

The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad

Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC

WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal

Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik

SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren

Kürzlich hochgeladen (20)

Vulnerability_Management_GRC_by Sohang Sengupta.pptx

Pigging Solutions Piggable Sweeping Elbows

IAC 2024 - IA Fast Track to Search Focused AI Solutions

#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024

Enhancing Worker Digital Experience: A Hands-on Workshop for Partners

Benefits Of Flutter Compared To Other Frameworks

Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...

08448380779 Call Girls In Civil Lines Women Seeking Men

Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation

Slack Application Development 101 Slides

Understanding the Laravel MVC Architecture

Next-generation AAM aircraft unveiled by Supernal, S-A2

Swan(sea) Song – personal research during my six years at Swansea ... and bey...

E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx

My Hashitalk Indonesia April 2024 Presentation

The Codex of Business Writing Software for Real-World Solutions 2.pptx

Breaking the Kubernetes Kill Chain: Host Path Mount

WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service

Injustice - Developers Among Us (SciFiDevCon 2024)

SQL Database Design For Developers at php[tek] 2024