• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
Extreme Web Hacking - h2hc 2008
 

Extreme Web Hacking - h2hc 2008

on

  • 2,263 views

 

Statistics

Views

Total Views
2,263
Views on SlideShare
2,111
Embed Views
152

Actions

Likes
0
Downloads
0
Comments
0

6 Embeds 152

http://wagnerelias.com 145
http://www.slideshare.net 2
http://localhost 2
http://www.infoblogs.com.br 1
http://infoblogs.com.br 1
http://www.linkedin.com 1

Accessibility

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    Extreme Web Hacking - h2hc 2008 Extreme Web Hacking - h2hc 2008 Presentation Transcript

    • Wagner Elias > Extreme Web Hacking http://wagnerelias.com São Paulo, 09/11/2008
    • GET Info
    • Web Security é Simples
    • Não Estúpido
    • Extreme Web Resources
    • AJAX INSECURITY - 1
    • AJAX INSECURITY - 2
    • JSON INSECURITY var json = "['Wagner', 2008, ''];alert('XSS');//']" var myArray = eval(json);
    • XML INSECURITY - 1 <?xml version=&quot;1.0&quot; encoding=&quot;ISO-8859-1&quot;?> <!DOCTYPE foo [ <!ELEMENT foo ANY> <!ENTITY xxe SYSTEM &quot;file://c:/boot.ini&quot;> ]> <foo>&xxe;</foo>
    • XML INSECURITY - 2
    • XML-RPC INSECURITY
    • Extreme Web Hacking
    • Análise passiva com Ratproxy
    • Explorando Web Resouces com w3af
    • Perguntas?
    • Referências