filmov
tv
Creating a Secure Web Server from 2 Vulnerable Web Servers by Parker Garrison | BSides CHS 2024
Показать описание
"A Shell? In the HTTP server response factory? Ok I guess we doin' shells now:" Creating a Secure Web Server from 2 Vulnerable Web Servers (Live Exploit Demos!) by Parker Garrison
Join cybersecurity expert Parker Garrison as he dives into innovative ways to secure a web server by combining two vulnerable servers to create a resilient defense system. This live demonstration explores exploit mitigation techniques, particularly through a consensus-based defense approach that leverages the strengths of each server to mitigate vulnerabilities and prevent data loss.
Key Topics Covered:
• Consensus-Based Defense: Combining two distinct web servers to block attacks when only one remains secure.
• Exploit Mitigation Techniques: How consensus-based defenses reduce risks of data loss, buffer overflows, and other common exploits.
• Memory Safety and Buffer Overflow Prevention: Using redundancy in servers to prevent successful exploitation.
• Historical and High-Profile Vulnerabilities: Examples of defenses against attacks like Code Red, Heartbleed, and Spectre using diversified server architectures.
Garrison shares insights into both the theoretical and practical aspects of this novel security approach. With live exploit demos and in-depth explanations, this talk is ideal for those in penetration testing, threat intelligence, and cyber defense.
Join cybersecurity expert Parker Garrison as he dives into innovative ways to secure a web server by combining two vulnerable servers to create a resilient defense system. This live demonstration explores exploit mitigation techniques, particularly through a consensus-based defense approach that leverages the strengths of each server to mitigate vulnerabilities and prevent data loss.
Key Topics Covered:
• Consensus-Based Defense: Combining two distinct web servers to block attacks when only one remains secure.
• Exploit Mitigation Techniques: How consensus-based defenses reduce risks of data loss, buffer overflows, and other common exploits.
• Memory Safety and Buffer Overflow Prevention: Using redundancy in servers to prevent successful exploitation.
• Historical and High-Profile Vulnerabilities: Examples of defenses against attacks like Code Red, Heartbleed, and Spectre using diversified server architectures.
Garrison shares insights into both the theoretical and practical aspects of this novel security approach. With live exploit demos and in-depth explanations, this talk is ideal for those in penetration testing, threat intelligence, and cyber defense.
0:09:00
7 Security Risks and Hacking Stories for Web Developers
0:18:43
Self-Hosting Security Guide for your HomeLab
0:30:21
How To Secure A Server
0:25:56
Self Host 101 - Set up and Secure Your Own Server
0:12:37
build your own browser (crazy SECURE)
0:02:18
Session vs Token Authentication in 100 Seconds
0:09:28
EXPOSE your home network to the INTERNET!! (it's safe)
0:00:42
6 Steps to Secure Your Linux Server From Hackers
0:39:10
Terraform for Beginners: AWS & Terraform Tutorial – How to create EC2 Instance and Security Grou...
0:23:15
5 Steps to Secure Linux (protect from hackers)
0:08:39
Raspberry Pi versus AWS // How to host your website on the RPi4
0:20:38
How To Protect Your Linux Server From Hackers!
0:10:27
Everything You NEED to Know About WEB APP Architecture
0:02:05
NGINX Explained in 100 Seconds
0:18:38
Set Up a Basic Website! nginx, Certbot & secure login
0:16:28
Apache Web Server Setup on Ubuntu 22.04 (with SSL)
0:56:25
Web application security: 10 things developers need to know
0:19:17
Self-Hosting & Home Server Security Tips
0:07:53
Apache vs NGINX
0:10:33
Web Server and Application Server | Explained 🔥🔥
0:47:13
build your own cloud
0:29:50
access EVERYTHING from your web browser!! (Linux and Windows Desktop, SSH) // Guacamole Install
0:12:25
Create a Secure HTTPS Server with Node JS!
0:05:07
'Basic Authentication' in Five Minutes
Комментарии