w eb p latform t he n ot c ompletely
play

W EB P LATFORM : T HE N OT C OMPLETELY AND O BVIOUSLY I NSECURE P - PowerPoint PPT Presentation

Dec 22, 2023 •280 likes •705 views

W EB P LATFORM : T HE S ECURE P ARTS Mike West @mikewest, mkw.st/+ Slides: https://mkw.st/r/goto13 W EB P LATFORM : T HE N OT C OMPLETELY AND O BVIOUSLY I NSECURE P ARTS Mike West @mikewest, mkw.st/+ Slides: https://mkw.st/r/goto13 Insert

  1. W EB P LATFORM : T HE S ECURE P ARTS Mike West @mikewest, mkw.st/+ Slides: https://mkw.st/r/goto13

  3. W EB P LATFORM : T HE N OT C OMPLETELY AND O BVIOUSLY I NSECURE P ARTS Mike West @mikewest, mkw.st/+ Slides: https://mkw.st/r/goto13

  8. Insert STARTSSL HERE. startssl.com

  9. $ curl -I http://mkw.st/ HTTP/1.1 301 Moved Permanently Server: nginx/1.5.0 Date: Mon, 1 Oct 2013 19:36:15 GMT Content-Type: text/html Content-Length: 184 Connection: keep-alive Keep-Alive: timeout=20 Location: https://mkw.st/

  10. $ curl -I https://mkw.st/ HTTP/1.1 200 OK Server: nginx/1.5.0 Date: Mon, 1 Oct 2013 19:42:31 GMT ... Strict-Transport-Security: max-age=2592000; includeSubDomains ...

  11. Set-Cookie: ...; secure; HttpOnly

  12. Public-Key-Pins: max-age=2592000; pin-sha1="4n972H…60yw4uqe/baXc="

  13. http://www.html5rocks.com/en/tutorials/security/transport-layer-security/ goo.gl/0aMqHM

  14. Content injection is scary.

  15. scheme://host:port

  16. <script> beAwesome(); </script> <script> beEvil(); </script>

  17. <script> beAwesome(); </script> <!-- <p>Hello, {$name}!</p> --> <p>Hello, <script> beEvil(); </script>!</p>

  18. <style> p { color: {{USER_COLOR}}; } </style> <p> Hello {{USER_NAME}}, view your <a href="{{USER_URL}}">Account</a>. </p> <script> var id = {{USER_ID}}; </script> <!-- DEBUG: {{INFO}} -->

  19. [][(![]+[])[+[[+[]]]]+([][[]]+[])[+[[!+[]+!+[]+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[]) [+[[+[]]]]+(!![]+[])[+[[!+[]+!+[]+!+[]]]]+(!![]+[])[+[[+!+[]]]]][([][(![]+[])[+[[+[]]]]+([][[]]+[]) [+[[!+[]+!+[]+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+(!![]+[])[+[[!+[]+!+[] +!+[]]]]+(!![]+[])[+[[+!+[]]]]]+[])[+[[!+[]+!+[]+!+[]]]]+([][(![]+[])[+[[+[]]]]+([][[]]+[])[+[[!+[] +!+[]+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+(!![]+[])[+[[!+[]+!+[]+!+[]]]] +(!![]+[])[+[[+!+[]]]]]+[])[+[[!+[]+!+[]+!+[]+!+[]+!+[]+!+[]]]]+([][[]]+[])[+[[+!+[]]]]+(![]+[])[+ [[!+[]+!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+(!![]+[])[+[[+!+[]]]]+([][[]]+[])[+[[+[]]]]+([][(![]+[])[+ [[+[]]]]+([][[]]+[])[+[[!+[]+!+[]+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+ (!![]+[])[+[[!+[]+!+[]+!+[]]]]+(!![]+[])[+[[+!+[]]]]]+[])[+[[!+[]+!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+ ([][(![]+[])[+[[+[]]]]+([][[]]+[])[+[[!+[]+!+[]+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+ [])[+[[+[]]]]+(!![]+[])[+[[!+[]+!+[]+!+[]]]]+(!![]+[])[+[[+!+[]]]]]+[])[+[[!+[]+!+[]+!+[]+!+[]+!+[] +!+[]]]]+(!![]+[])[+[[+!+[]]]]]((![]+[])[+[[+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[])[+[[!+[]+!+ []+!+[]]]]+(!![]+[])[+[[+!+[]]]]+(!![]+[])[+[[+[]]]]+([][(![]+[])[+[[+[]]]]+([][[]]+[])[+[[!+[]+!+ []+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+(!![]+[])[+[[!+[]+!+[]+!+[]]]]+ (!![]+[])[+[[+!+[]]]]]+[])[+[[+!+[]]]+[[!+[]+!+[]+!+[]+!+[]+!+[]]]]+[+!+[]]+([][(![]+[])[+[[+[]]]]+ ([][[]]+[])[+[[!+[]+!+[]+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+(!![]+[])[+ [[!+[]+!+[]+!+[]]]]+(!![]+[])[+[[+!+[]]]]]+[])[+[[+!+[]]]+[[!+[]+!+[]+!+[]+!+[]+!+[]+!+[]]]])()

  20. [][(![]+[])[+[[+[]]]]+([][[]]+[])[+[[!+[]+!+[]+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[]) [+[[+[]]]]+(!![]+[])[+[[!+[]+!+[]+!+[]]]]+(!![]+[])[+[[+!+[]]]]][([][(![]+[])[+[[+[]]]]+([][[]]+[]) [+[[!+[]+!+[]+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+(!![]+[])[+[[!+[]+!+[] +!+[]]]]+(!![]+[])[+[[+!+[]]]]]+[])[+[[!+[]+!+[]+!+[]]]]+([][(![]+[])[+[[+[]]]]+([][[]]+[])[+[[!+[] +!+[]+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+(!![]+[])[+[[!+[]+!+[]+!+[]]]] +(!![]+[])[+[[+!+[]]]]]+[])[+[[!+[]+!+[]+!+[]+!+[]+!+[]+!+[]]]]+([][[]]+[])[+[[+!+[]]]]+(![]+[])[+ [[!+[]+!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+(!![]+[])[+[[+!+[]]]]+([][[]]+[])[+[[+[]]]]+([][(![]+[])[+ alert(1); [[+[]]]]+([][[]]+[])[+[[!+[]+!+[]+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+ (!![]+[])[+[[!+[]+!+[]+!+[]]]]+(!![]+[])[+[[+!+[]]]]]+[])[+[[!+[]+!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+ ([][(![]+[])[+[[+[]]]]+([][[]]+[])[+[[!+[]+!+[]+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+ [])[+[[+[]]]]+(!![]+[])[+[[!+[]+!+[]+!+[]]]]+(!![]+[])[+[[+!+[]]]]]+[])[+[[!+[]+!+[]+!+[]+!+[]+!+[] +!+[]]]]+(!![]+[])[+[[+!+[]]]]]((![]+[])[+[[+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[])[+[[!+[]+!+ []+!+[]]]]+(!![]+[])[+[[+!+[]]]]+(!![]+[])[+[[+[]]]]+([][(![]+[])[+[[+[]]]]+([][[]]+[])[+[[!+[]+!+ []+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+(!![]+[])[+[[!+[]+!+[]+!+[]]]]+ (!![]+[])[+[[+!+[]]]]]+[])[+[[+!+[]]]+[[!+[]+!+[]+!+[]+!+[]+!+[]]]]+[+!+[]]+([][(![]+[])[+[[+[]]]]+ ([][[]]+[])[+[[!+[]+!+[]+!+[]+!+[]+!+[]]]]+(![]+[])[+[[!+[]+!+[]]]]+(!![]+[])[+[[+[]]]]+(!![]+[])[+ [[!+[]+!+[]+!+[]]]]+(!![]+[])[+[[+!+[]]]]]+[])[+[[+!+[]]]+[[!+[]+!+[]+!+[]+!+[]+!+[]+!+[]]]])()

  21. https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet goo.gl/XE0aW

  22. "I discount the probability of perfection." -Alex Russell

  23. "We are all idiots with deadlines." -Mike West

  24. http://traumwerk.stanford.edu/philolog/2009/10/homers_odyssey_in_art_sirens_f.html

  25. Principle of Least Privilege

  26. http://w3.org/TR/CSP11

  27. http://www.html5rocks.com/en/tutorials/security/content-security-policy/ https://mkw.st/r/csp

  29. Content-Security-Policy: default-src 'none'; style-src https://mikewestdotorg.hasacdn.net; frame-src https://www.youtube.com https://www.speakerdeck.com; script-src https://mikewestdotorg.hasacdn.net https://ssl.google-analytics.com; img-src 'self' https://mikewestdotorg.hasacdn.net https://ssl.google-analytics.com; font-src https://mikewestdotorg.hasacdn.net

  30. Content-Security-Policy: default-src ...; script-src ...; object-src ...; style-src ...; img-src ...; media-src ...; frame-src ...; font-src ...; connect-src ...; sandbox ...; report-uri https://example.com/reporter.cgi

  31. Content-Security-Policy-Report-Only: default-src https:; report-uri https://example.com/csp-violations { "csp-report": { "document-uri": "http://example.org/page.html", "referrer": "http://evil.example.com/haxor.html", "blocked-uri": "http://evil.example.com/img.png", "violated-directive": "default-src 'self'", "original-policy": "...", "source-file": "http://example.com/script.js", "line-number": 10, "column-number": 11, } }

  32. https://twitter.com/rwaldron/status/371801007829041153

  33. <script> function handleClick() { ... } </script> <button onclick="handleClick()">Click me!</button> <a href="javascript:handleClick()">Click me!</a>

  34. <!-- index.html --> <script src="clickHandler.js"></script> <button class="clckr">Click me!</button> <a href="#" class="clckr">Click me!</a> <!-- clickHandler.js --> function handleClick() { ... } function init() { for (var e in document.querySelectorAll('.clckr')) e.addEventListener('click', handleClick); }

  35. Content-Security-Policy: script-src 'nonce-afbvjn+afpo-j1qer'; <button class="clckr">Click me!</button> <a href="#" class="clckr">Click me!</a> <script nonce="oafbvjn+afpo-j1qer"> function handleClick() { ... } function init() { var e; for (e in document.querySelectorAll('.clckr')) e.addEventListener('click', handleClick); } </script>

  36. ` eval() ` is evil?

  37. <iframe src="page.html" sandbox></iframe> <!-- * Unique origin * No plugins. * No script. * No form submissions. * No top-level navigation. * No popups. * No autoplay. * No pointer lock. * No seamless iframes. -->

  38. <iframe src="page.html" sandbox="allow-forms allow-pointer-lock allow-popups allow-same-origin allow-scripts allow-top-navigation"> </iframe> <!-- * No plugins. * No seamless iframes. -->

  39. <!-- User-generated content? (in The Near Future™) --> <iframe seamless srcdoc="<p>This is a comment!</p>" sandbox></iframe>

  40. http://www.html5rocks.com/en/tutorials/security/sandboxed-iframes/ goo.gl/WJjv10

  41. https://mkw.st/r/goto13 Thanks! Mike West https://mikewest.org G+: mkw.st/+ Twitter: @mikewest Slides: https://mkw.st/r/goto13

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Method code for the ttH channel analysis on GPU's 's pla latform G. Grasseau 1 , F. Beaudette 1

Method code for the ttH channel analysis on GPU's 's pla latform G. Grasseau 1 , F. Beaudette 1

Deployment of a Matrix Ele lement Method code for the ttH channel analysis on GPU's 's pla latform G. Grasseau 1 , F. Beaudette 1 , A. Zabi 1 , C. Martin Perez 1 , A.Chiron 1 , T. Strebler 2 , G. Hautreux 3 CHEP 2018 Conference, 9-13 July,

326 views • 8 slides
Gain ins in in Submarine and Ship Pla latform Desig ign Efficiency through In Innovative Lif

Gain ins in in Submarine and Ship Pla latform Desig ign Efficiency through In Innovative Lif

Gain ins in in Submarine and Ship Pla latform Desig ign Efficiency through In Innovative Lif ife Cycle Management By: Derek Hughes CanPM Consulting Inc. Agenda D&amp;B Shipyard Focus Design Efficiency Systems Thinking

315 views • 16 slides
Soft ftware Pla latform In Innovation - an example fr from the Health In Information Systems

Soft ftware Pla latform In Innovation - an example fr from the Health In Information Systems

Soft ftware Pla latform In Innovation - an example fr from the Health In Information Systems Programme (H (HIS ISP) and Terje Aksel Sanner Presentation outline Scale in software design and innovation On the distance between designers /

901 views • 20 slides
S-100 Data Services via SMART Navigation Pla latform Presented by KHOA International

S-100 Data Services via SMART Navigation Pla latform Presented by KHOA International

IHO S-100 Working Group S-100 Data Services via SMART Navigation Pla latform Presented by KHOA International Hydrographic Organization S-100WG-4, Denmark, 27 29 Feb. 2019 Organisation Hydrographique Internationale Background Korean

288 views • 9 slides
Rural l Development housin ing as a pla latform for services SUPPORT AND SERVICES AT HOME

Rural l Development housin ing as a pla latform for services SUPPORT AND SERVICES AT HOME

Rural l Development housin ing as a pla latform for services SUPPORT AND SERVICES AT HOME Getting to Scale Nationall lly Smarter Spending Percent change over two years in average $1 , 57 4, 97 0 Medicare expenditures for SASH vs

156 views • 4 slides
Welcome to your Careers Platform! A DEDICATED CA CAREERS PLA LATFORM ACCESSIB IBLE WHEREVER

Welcome to your Careers Platform! A DEDICATED CA CAREERS PLA LATFORM ACCESSIB IBLE WHEREVER

Welcome to your Careers Platform! A DEDICATED CA CAREERS PLA LATFORM ACCESSIB IBLE WHEREVER YOU ARE ALL LL THE TOOLS YOU NEE EED TO BU BUIL ILD YOUR FU FUTURE CA CARE REER Careers events, careers service appointments, company

438 views • 10 slides
P LATFORM - BASED VS . S ERVICE - BASED COMPETITION : H OW SHOULD L ATIN A MERICA R EGULATE ? D.

P LATFORM - BASED VS . S ERVICE - BASED COMPETITION : H OW SHOULD L ATIN A MERICA R EGULATE ? D.

P LATFORM - BASED VS . S ERVICE - BASED COMPETITION : H OW SHOULD L ATIN A MERICA R EGULATE ? D. Mark Kennet, Ph.D. www.MarkKennet.com I NTRODUCTION As an economist, my position always depends on how we are defining objectives For that

680 views • 16 slides
Latest on the re-constrainable pla latform of FEVAR Robin Wil illiams, Newcastle-upon-Tyne

Latest on the re-constrainable pla latform of FEVAR Robin Wil illiams, Newcastle-upon-Tyne

Latest on the re-constrainable pla latform of FEVAR Robin Wil illiams, Newcastle-upon-Tyne Thanks to: Sandip Nandhra Andrew Hatrick Jamie McCarte www.critical-issues-congress.com Disclosure Speaker name: Robin

593 views • 41 slides
Trading Pla latform (UAE) Sep September 20 2019 19, Rev. 1.3 1.3 Executive Summary Trading

Trading Pla latform (UAE) Sep September 20 2019 19, Rev. 1.3 1.3 Executive Summary Trading

Executive Summary ry MID IDGARD Oil il Hub LLC FZC Trading Pla latform (UAE) Sep September 20 2019 19, Rev. 1.3 1.3 Executive Summary Trading Platform Table of Content 1 | Starting Position &amp; Objective 2 | Brief Synopsis on

804 views • 19 slides
B UILDING F ACTORING B USINESS P LATFORM P RESENTED B Y B LEND F INANCIAL S ERVICES L IMITED AT W

B UILDING F ACTORING B USINESS P LATFORM P RESENTED B Y B LEND F INANCIAL S ERVICES L IMITED AT W

B UILDING F ACTORING B USINESS P LATFORM P RESENTED B Y B LEND F INANCIAL S ERVICES L IMITED AT W ORKSHOP ON A CHIEVING SUCCESS THROUGH F ACTORING O RGANIZED B Y A FRICAN E XPORT I MPORT B ANK (AFREXIMBANK) ON 2 ND , D ECEMBER , 2011 A

799 views • 40 slides
PROTECT a P latform for Ro bust T hr e shold C ryp t ography Jason Resch, Christian Cachin, Hugo

PROTECT a P latform for Ro bust T hr e shold C ryp t ography Jason Resch, Christian Cachin, Hugo

PROTECT a P latform for Ro bust T hr e shold C ryp t ography Jason Resch, Christian Cachin, Hugo Krawczyk, Tal Rabin, Chrysa Stathakopoulou Project Overview Functionality and Goals Model and Assumptions Architecture Tunable

857 views • 18 slides
A DVERTISING P LATFORM Students : Avi Shahimov, Ariel Slonim , Nave Ariel , Yuri Gabaev , Yuval

A DVERTISING P LATFORM Students : Avi Shahimov, Ariel Slonim , Nave Ariel , Yuri Gabaev , Yuval

A DVERTISING P LATFORM Students : Avi Shahimov, Ariel Slonim , Nave Ariel , Yuri Gabaev , Yuval Kovler, Dima Kupershmidt Mentor: Segev Cohen. Supervisor: Eli Itin Hanoch Sapoznikov Jan 2012 Lead of Worldwide Academic Relations 30 Oct

446 views • 9 slides
WAVES B IG D ATA P LATFORM FOR R EAL - TIME S EMANTIC S TREAM M ANAGEMENT WAVES ATOS SE OUTLINE

WAVES B IG D ATA P LATFORM FOR R EAL - TIME S EMANTIC S TREAM M ANAGEMENT WAVES ATOS SE OUTLINE

WAVES B IG D ATA P LATFORM FOR R EAL - TIME S EMANTIC S TREAM M ANAGEMENT WAVES ATOS SE OUTLINE What is WAVES? Why WAVES? How WAVES? Achievements Contact 2 WAVES ATOS SE WHAT IS WAVES? Massive Semantic Streams empowering Innovative Big

573 views • 17 slides
P AN -E UROPEAN B IODIVERSITY P LATFORM W ORK P ROGRAMME 2014-2017 1 Table of Contents 1.

P AN -E UROPEAN B IODIVERSITY P LATFORM W ORK P ROGRAMME 2014-2017 1 Table of Contents 1.

P AN -E UROPEAN B IODIVERSITY P LATFORM W ORK P ROGRAMME 2014-2017 1 Table of Contents 1. Introduction ................................................................................................................................. 4 1.1.

459 views • 35 slides
Vendors Meet -2016 Problem fa faced by IS ISAC fr from Vendors on EGPS Pla latform ISRO

Vendors Meet -2016 Problem fa faced by IS ISAC fr from Vendors on EGPS Pla latform ISRO

Vendors Meet -2016 Problem fa faced by IS ISAC fr from Vendors on EGPS Pla latform ISRO Satellite Centre (ISAC) 12 th December 2016 EGPS WORKS Vendors ISAC Vendors on - line Web-enable led Proc rocurement t SC

308 views • 27 slides
Open Smart Grid id Pla latform An Open source IoT platform for large infrastructures Why did

Open Smart Grid id Pla latform An Open source IoT platform for large infrastructures Why did

Open Smart Grid id Pla latform An Open source IoT platform for large infrastructures Why did we develop the Open Smart Grid Platform? The Open Smart Grid Platform architecture Use cases: Applications Smart Lighting Application

488 views • 9 slides
Web Technologies and What is Perl &amp; What is it for? Applications Perl is an acronym for

Web Technologies and What is Perl &amp; What is it for? Applications Perl is an acronym for

Web Technologies and What is Perl &amp; What is it for? Applications Perl is an acronym for Practical Extraction and Report language. Winter 2001 It is currently the most used language for CGI- CMPUT 499: Perl, Cookies and other

457 views • 12 slides
CGI Apache mod_cgi.c oyama@cpan.org Shibuya Perl Mongers Shibuya.pm TechTalks#3 2003-06-13

CGI Apache mod_cgi.c oyama@cpan.org Shibuya Perl Mongers Shibuya.pm TechTalks#3 2003-06-13

CGI Apache mod_cgi.c oyama@cpan.org Shibuya Perl Mongers Shibuya.pm TechTalks#3 2003-06-13 p.1/17 Apache CGI Shibuya.pm TechTalks#3 2003-06-13 p.2/17 Apache http_core.c module mod_env.c

515 views • 19 slides
About initial project reports Your initial report should describe what you are going to implement

About initial project reports Your initial report should describe what you are going to implement

Practical matters About initial project reports Your initial report should describe what you are going to implement well. It should include, Database-enabled web technology the requirements Web Programming your initial database design

228 views • 4 slides
Modules Intermediate Perl Programming Part 2 1 of 42 What is a module? MyModule

Modules Intermediate Perl Programming Part 2 1 of 42 What is a module? MyModule

Modules Intermediate Perl Programming Part 2 1 of 42 What is a module? MyModule Intermediate Perl Programming Part 2 2 of 42 What is a module? $MyModule::x @MyModule::a MyModule::do_this() MyModule::do_that() MyModule

251 views • 21 slides
CPL and CGI Transport in SIP REGISTER Payloads Jonathan Lennox Columbia University

CPL and CGI Transport in SIP REGISTER Payloads Jonathan Lennox Columbia University

' $ CPL and CGI transport in SIP REGISTER messages 1 CPL and CGI Transport in SIP REGISTER Payloads Jonathan Lennox Columbia University lennox@cs.columbia.edu IETF IPTel Working Group Tuesday, March 16, 1999 &amp; % Jonathan Lennox ' $

338 views • 6 slides
Buffer Overflows with Content 2 A Process Stack Buffer Overflow Common Techniques employed

Buffer Overflows with Content 2 A Process Stack Buffer Overflow Common Techniques employed

1 Buffer Overflows with Content 2 A Process Stack Buffer Overflow Common Techniques employed in buffer overflow exploits to create backdoors Execution of additional network services via the INETD daemon The addition of new users

497 views • 30 slides
P rocesses Recall: A pr ocess includes Address space (Code, Dat a, Heap, St ack) 4:

P rocesses Recall: A pr ocess includes Address space (Code, Dat a, Heap, St ack) 4:

P rocesses Recall: A pr ocess includes Address space (Code, Dat a, Heap, St ack) 4: Threads Regist er values (including t he P C) Resources allocat ed t o t he process Memor y, open f iles, net wor k connect ions Last Modif

411 views • 5 slides
IRL: Live Hacking Demos! Rick Ramgattie Omer Farooq Security Analyst Senior Security Analyst

IRL: Live Hacking Demos! Rick Ramgattie Omer Farooq Security Analyst Senior Security Analyst

#RSAC SESSION ID: SESSION ID: SBX2-R3 IRL: Live Hacking Demos! Rick Ramgattie Omer Farooq Security Analyst Senior Security Analyst Independent Security Evaluators (ISE) Independent Security Evaluators (ISE) @rramgatie @omerfar23 #RSAC

924 views • 43 slides

More recommend