YoVDO

Riding the Magical Code Injection Rainbow

Offered By: LASCON via YouTube

Tags

LASCON Courses Cybersecurity Courses Ethical Hacking Courses SQL Injection Courses Web Application Security Courses

Course Description

Overview

Explore advanced exploitation techniques in this 43-minute LASCON conference talk from 2013. Delve into the Magical Code Injection Rainbow (MCIR) framework for building configurable vulnerable applications. Learn about SQLol for SQL injection and XMLmao for XML and XPath injection. Discover advanced techniques in SQL injection, XPath injection, cross-site scripting, and shell command injection. Examine the exploitation of insecure cryptosystems and gain insights on creating your own configurable vulnerable application using the MCIR framework. Cover topics such as testbeds, Anti XSS, XMLMAO, cryptography, web security, key reuse, encryption, and shell injection.

Syllabus

Introduction
What is the Magical Code Injection Rainbow
What are vulnerable applications
Limitations of vulnerable applications
Testbeds
Anti XSS
XMLMAO
Crypt OMG
Web Site
Reusing Keys
Encryption
Shell Injection


Taught by

LASCON

Related Courses

Authentication & Authorization: OAuth
Udacity Desarrollo de Aplicaciones Web: Seguridad
University of New Mexico via Coursera Web Application Development: Security
University of New Mexico via Coursera Hacking and Patching
University of Colorado System via Coursera Fundamentals of Computer Network Security
University of Colorado System via Coursera