Loading…
SkyDogCon 2015 has ended
Back To Schedule
Saturday, October 24 • 4:00pm - 5:00pm
Hacking Web Apps - Brent White
Assessing the security posture of a web application is a common project for a penetration tester and a good skill for developers to know. In this talk, I'll go over the different stages of a web application pen test, from start to finish. We'll start with tools used during the discovery phase to utilize OSINT sources such as search engines, sub-domain brute-forcing and other methods to help you get a good idea of targets "footprint", all the way to tools used for fuzzing parameters to find potential SQL injection vulnerabilities. I'll also discuss pro-tips and tricks that I use while conducting a full application penetration assessment. After this talk, you should have a good understanding of what is needed as well as where to start on your journey to hacking web apps.

Speakers
BW

Brent White

Brent is an Offensive Security Consultant at Solutionary--An NTT Group Security Company and has spoken at numerous security conferences, including ISSA International, B-Sides Nashville, CircleCityCon and DEF CON 22 & 23 and DerbyCon. He has held the role of Web/Project Manager and... Read More →


Saturday October 24, 2015 4:00pm - 5:00pm CDT
Track 1