AntiSnatch0r

Finally I’ve got some free time to update my blog, and post about my latest security seminar: it was in Munich, Germany, on 20th January 2010. It has been a great experience, mainly because some friends from University invited me to speak there, and the beer was so flavored.

Understand how attackers can exploit common and uncommon flaws of web
applications, how they can break data confidentiality and alter data
integrity is vital to ensure security respecting the principle “The only
way to stop a Hacker is to think like one”.

The presentation cover common flaws and uncommon flaws. The first
ones will be easily understood by unskilled people, the latter combined
with advanced techniques such as XSS proxies can become
devastating in classic security policy environments such as
Discretionary Access Control.

For the Browser Exploitation part I’ve made a dedicated screencast: you can reach it on my Vimeo channel.