Completed
Why the Lucky Stiff
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Taking on the King: Killing Injection Vulnerabilities - APPSEC Cali 2018
Automatically move to the next video in the Classroom when playback concludes
- 1 Introduction
- 2 Vacation pictures
- 3 About me
- 4 Survey Monkey
- 5 Sequel Injection
- 6 Top 10
- 7 Top 10 2017
- 8 Prevalence vs Impact
- 9 Hacker One Report
- 10 CrowdStrike 2017 Report
- 11 Injection Vulnerabilities
- 12 Injection Example
- 13 Command Injection Example
- 14 Crosssite Scripting
- 15 Thesis
- 16 Compiler Construction
- 17 String Manipulation
- 18 ORM
- 19 Suggestions
- 20 Stop providing unsafe interfaces
- 21 Examples of unsafe interfaces
- 22 Using untrusted libraries
- 23 Rails example
- 24 Not just developers
- 25 Query Parameters
- 26 Why the Lucky Stiff
- 27 Accepting Code
- 28 Restrictions
- 29 Building Strings
- 30 Tip Floating
- 31 C Templates
- 32 Parsers
- 33 Shell contextaware auto escaping
- 34 Frameworks
- 35 Lang SEC
- 36 Security Professional
- 37 Parameter Statements
- 38 OverTrusting Input
- 39 Example
- 40 Static Analysis
- 41 Libraries
- 42 Building new frameworks