• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
Chaos Report - Web Security Version
 

Chaos Report - Web Security Version

on

  • 1,529 views

Slides do Lightning Talk apresentado no Segundo TTLabs Summit em 11/11/2011.

Slides do Lightning Talk apresentado no Segundo TTLabs Summit em 11/11/2011.

Statistics

Views

Total Views
1,529
Views on SlideShare
1,528
Embed Views
1

Actions

Likes
0
Downloads
2
Comments
0

1 Embed 1

http://umovme.cc 1

Accessibility

Categories

Upload Details

Uploaded via as Apple Keynote

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n

Chaos Report - Web Security Version Chaos Report - Web Security Version Presentation Transcript

  • The Chaos ReportWeb Security Version Eduardo Bohrer - @nbluis eduardobohrer.com.br
  • Você tem tido o devido cuidado?
  • O nosso inimigo está armado e parapetado!
  • Os números de 2010
  • Os números de 2010 93% mais ataques web 15~20 milhões de ataques por dia 1+ milhão bots 42% mais ataques mobile 260+ milhões novos malwares Brasil 4 colocado em atividade maliciosaFonte: Symantec Security Threat Report Volume 16
  • 6
  • 30 vulnerabilidades mais recorrentes. 84% websites do mundo são susceptíveis.Fonte: Whitehat website security statistics report 2011. 6
  • 30 vulnerabilidades84% websites do mundoFonte: Whitehat website security statistics report 2011. 6
  • Quem poderá nos defender?
  • Sem fins lucrativos
  • Diversos apoiadores
  • Muitos projetos e material de estudo
  • Muitos projetos e material de estudoOWASP Top 10 OWASP Testing Guide ESAPI Web Goat WebScarab OWASP Development Guide
  • Grupo de discussão;Organização de eventos;Fez a organização do AppSec Latin America 2011.
  • Referenciashttp://www.symantec.com/business/threatreport/https://www.whitehatsec.com/assets/WPstats_winter11_11th.pdfhttps://www.owasp.org/index.php/Main_Pagehttps://www.owasp.org/index.php/Category:OWASP_Projecthttps://www.owasp.org/index.php/Porto_Alegrehttps://www.owasp.org/index.php/Category:OWASP_WebScarab_Projecthttps://www.owasp.org/index.php/Category:OWASP_Guide_Projecthttps://www.owasp.org/index.php/Category:OWASP_Testing_Projecthttps://www.owasp.org/index.php/Category:OWASP_Top_Ten_Projecthttps://www.owasp.org/index.php/Category:OWASP_WebGoat_Projecthttps://www.owasp.org/index.php/Category:OWASP_Enterprise_Security_API
  • Imagenshttp://3.bp.blogspot.com/_Na4CPVnGtCk/TT8o77X2PxI/AAAAAAAAZ6c/xfQtTtZxM_w/s400/apontando_o_dedo.jpghttp://1.bp.blogspot.com/_TBFrVWg5uOM/TF_9R41sK7I/AAAAAAAAB1U/elW_A1ning8/s1600/chapolin.jpghttp://www.yaboukir.com/wp-content/uploads/2011/09/owasp.pnghttps://www.owasp.org/images/c/c1/Owasp-poa-eng.pnghttp://wallpapergravity.com/wallpapers2/650/650912.jpghttp://i277.photobucket.com/albums/kk65/darinaldi/fuuu.pnghttp://fak3r.com/wp-content/blogs.dir/12/files/challenge_accepted_Amazing_Feats_Fails_WIns_Lolz_and_A_Contest-s325x265-158648-535.pnghttp://osprofanos.com/wp-content/uploads/2011/02/