Explore the power of CodeQL for vulnerability discovery in this 27-minute conference talk from h@cktivitycon 2020. Gain a comprehensive introduction to CodeQL and its practical applications in cybersecurity. Learn how to leverage CodeQL's advanced static and taint analysis capabilities to uncover critical vulnerabilities, including a potential remote code execution flaw. Delve into key concepts such as static analysis, taint analysis, and data flow analysis, enhancing your understanding of modern security assessment techniques. Equip yourself with valuable insights to improve your vulnerability detection skills and strengthen your overall security posture.
Overview
Syllabus
h@cktivitycon 2020: Discover vulnerabilities with CodeQL
Taught by
HackerOne
Related Courses
-
You've Got Pwned - Exploiting E-Mail Systems
-
WAF Bypass In Depth
-
H@cktivityCon 2020 - From an 'IVI in a Box' to a 'Car in a Box'
-
Beyond the Borders of Scope
-
How We Analyzed and Built an Exploit PoC for CVE-2022-24086, a Magento RCE - Catalin Filip - DefCamp - 2022
-
New Isn't Always Novel - Finding Basic Vulnerabilities in Enterprise Software
