Overview
Explore language security (LANGSEC) as an alternative methodology to pattern matching in web security in this 52-minute conference talk from AppSec California 2016. Dive into the informal and formal theory behind lexers, tokenizers, and parsers. Learn how to construct an open-source toolchain for data analysis and interactive data visualization. Examine performance tradeoffs and discuss modern application security challenges. Gain practical knowledge on implementing LANGSEC to analyze and prevent specific security attacks, moving beyond the limitations of traditional pattern matching approaches.
Syllabus
Visualizing Security via LANGSEC - Kunal Anand - AppSec California 2016
Taught by
OWASP Foundation