filmov
tv
Patching the XXE Vulnerability - Exploiting and Securing Vulnerabilities in Java Applications
Показать описание
Link to this course:
Patching the XXE Vulnerability - Exploiting and Securing Vulnerabilities in Java Applications
Secure Coding Practices Specialization
In this course, we will wear many hats. With our Attacker Hats on, we will exploit Injection issues that allow us to steal data, exploit Cross Site Scripting issues to compromise a users browser, break authentication to gain access to data and functionality reserved for the ‘Admins’, and even exploit vulnerable components to run our code on a remote server and access some secrets. We will also wear Defender Hats. We will dive deep in the code to fix the root cause of these issues and discuss various mitigation strategies. We do this by exploiting WebGoat, an OWASP project designed to teach penetration testing. WebGoat is a deliberately vulnerable application with many flaws and we take aim at fixing some of these issues. Finally we fix these issues in WebGoat and build our patched binaries. Together we will discuss online resources to help us along and find meaningful ways to give back to the larger Application Security community.
Java, secure programming, Java Programming, security
Great course, got lot to earn about vulnerabilities and their mitigation strategies,Very Good course material. dicover it, try it, fix it method.
In this module, you will be able to exploit a SQL injection vulnerability and form plans to mitigate injection vulnerabilities in your web application. You will be able to discuss various approaches to finding and fixing XML, Entity and SQL attack vulnerabilities. You'll be able to describe and protect against a man-in-the-middle attack and describe the the thought process to find SQL injection vulnerabilities by putting on the attacker's hat. You will be able to demonstrate how to properly modify queries to get them into prepared statements and analyze code while using an XML viewer and text editor to find vulnerabilities. You'll also be able to navigate a large code base to find critical segments of code and patch vulnerabilities.
Patching the XXE Vulnerability - Exploiting and Securing Vulnerabilities in Java Applications
Copyright Disclaimer under Section 107 of the copyright act 1976, allowance is made for fair use for purposes such as criticism, comment, news reporting, scholarship, and research. Fair use is a use permitted by copyright statute that might otherwise be infringing. Non-profit, educational or personal use tips the balance in favour of fair use.
Patching the XXE Vulnerability - Exploiting and Securing Vulnerabilities in Java Applications
Secure Coding Practices Specialization
In this course, we will wear many hats. With our Attacker Hats on, we will exploit Injection issues that allow us to steal data, exploit Cross Site Scripting issues to compromise a users browser, break authentication to gain access to data and functionality reserved for the ‘Admins’, and even exploit vulnerable components to run our code on a remote server and access some secrets. We will also wear Defender Hats. We will dive deep in the code to fix the root cause of these issues and discuss various mitigation strategies. We do this by exploiting WebGoat, an OWASP project designed to teach penetration testing. WebGoat is a deliberately vulnerable application with many flaws and we take aim at fixing some of these issues. Finally we fix these issues in WebGoat and build our patched binaries. Together we will discuss online resources to help us along and find meaningful ways to give back to the larger Application Security community.
Java, secure programming, Java Programming, security
Great course, got lot to earn about vulnerabilities and their mitigation strategies,Very Good course material. dicover it, try it, fix it method.
In this module, you will be able to exploit a SQL injection vulnerability and form plans to mitigate injection vulnerabilities in your web application. You will be able to discuss various approaches to finding and fixing XML, Entity and SQL attack vulnerabilities. You'll be able to describe and protect against a man-in-the-middle attack and describe the the thought process to find SQL injection vulnerabilities by putting on the attacker's hat. You will be able to demonstrate how to properly modify queries to get them into prepared statements and analyze code while using an XML viewer and text editor to find vulnerabilities. You'll also be able to navigate a large code base to find critical segments of code and patch vulnerabilities.
Patching the XXE Vulnerability - Exploiting and Securing Vulnerabilities in Java Applications
Copyright Disclaimer under Section 107 of the copyright act 1976, allowance is made for fair use for purposes such as criticism, comment, news reporting, scholarship, and research. Fair use is a use permitted by copyright statute that might otherwise be infringing. Non-profit, educational or personal use tips the balance in favour of fair use.
0:09:37
0:04:16
0:04:25
0:01:50
0:33:26
0:07:02
0:02:53
0:05:43
0:05:42
0:04:33
0:25:10
0:02:32
0:30:40
0:19:08
0:06:53
0:25:21
0:01:04
0:02:48
0:04:32
0:01:19
0:33:01
0:02:48
0:32:26
0:09:02