SkyDogCon 2015 has ended
Back To Schedule
Saturday, October 24 • 4:00pm - 5:00pm
Hacking Web Apps - Brent White
Assessing the security posture of a web application is a common project for a penetration tester and a good skill for developers to know. In this talk, I'll go over the different stages of a web application pen test, from start to finish. We'll start with tools used during the discovery phase to utilize OSINT sources such as search engines, sub-domain brute-forcing and other methods to help you get a good idea of targets "footprint", all the way to tools used for fuzzing parameters to find potential SQL injection vulnerabilities. I'll also discuss pro-tips and tricks that I use while conducting a full application penetration assessment. After this talk, you should have a good understanding of what is needed as well as where to start on your journey to hacking web apps.


Brent White

Brent is an Offensive Security Consultant at Solutionary--An NTT Group Security Company and has spoken at numerous security conferences, including ISSA International, B-Sides Nashville, CircleCityCon and DEF CON 22 & 23 and DerbyCon. He has held the role of Web/Project Manager and... Read More →

Saturday October 24, 2015 4:00pm - 5:00pm CDT
Track 1