From 6f1cf11203f36c627fb60269d3547a1660d88c8d Mon Sep 17 00:00:00 2001 From: marcinzelent Date: Mon, 18 Jun 2018 18:31:35 +0200 Subject: Added presentation --- presentation.txt | 68 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 68 insertions(+) create mode 100644 presentation.txt diff --git a/presentation.txt b/presentation.txt new file mode 100644 index 0000000..22e4ded --- /dev/null +++ b/presentation.txt @@ -0,0 +1,68 @@ +Application security + +What is application security and why is it important? + +Most common application vulnerabilities (OWASP TOP 10) + +A1:2017 - Injection + +A2:2017 - Broken Authentication + +A3:2017 - Sensitive Data Exposure + +A4:2017 - XML External Entities (XXE) + + + +]> +&xxe; + + + + + + + + + + + + + +]> +&lol9; + + +A5:2017 - Broken Access Control + +https://www.website.com/userpage.aspx?id=12 + +A6:2017 - Security Misconfiguration + +A7:2017 - Cross-Site Scripting (XSS) + +A8:2017 - Insecure Deserialization + +{ + "id":123, + "name":"john", + "role":"user" +} + +{ + "id":1, + "name":"admin", + "role":"admin" +} + +A9:2017 - Using Components with Known Vulnerabilities + +A10:2017 - Insufficient Logging & Monitoring + +Buffer overflow + +BONUS + +Thank you for your attention. -- cgit v1.2.3