Explore cutting-edge optimization and obfuscation techniques for SQL injections in this 49-minute Black Hat USA 2013 conference talk by Roberto Salgado. Discover methods to bypass web application firewalls and intrusion detection systems at unprecedented speeds. Witness live demonstrations of these techniques on both open-source and commercial firewalls. Get introduced to Leapfrog, an ALPHA version framework developed by Salgado to help security professionals, IT administrators, and firewall vendors test their defense measures against real cyber-attacks. Learn how to significantly reduce SQL injection exploitation time and understand why firewalls and intrusion detection systems alone are insufficient for complete security. Gain insights into Salgado's innovative approaches, currently among the fastest for extracting database information through SQL injections, and explore the importance of implementing additional security measures beyond traditional defenses.
Overview
Syllabus
Black Hat USA 2013 - UNION SELECT `This_Talk` AS ('New Optimization and Obfuscation Techniques')%00
Taught by
Black Hat
Related Courses
-
One-Way SQL Hacking - Futility of Firewalls in Web Hacking
-
Union Select This Talk As New Exploitation And Obfuscation Techniques
-
Bypassing Intrusion Detection Systems
-
Burglar Alarms and Booby Traps
-
Intrusion Detection in High Speed Networks
-
Libinjection - A C Library for SQLI Detection and Generation Through Lexical Analysis
