YoVDO

AutoSpear - Towards Automatically Bypassing and Inspecting Web Application Firewalls

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Web Development Courses Cybersecurity Courses SQL Injection Courses Security Assessment Courses Web Application Firewalls Courses

Course Description

Overview

Explore the vulnerabilities of web application firewalls (WAFs) and WAF-as-a-service solutions in this 35-minute Black Hat conference talk. Delve into the effectiveness of these widely-used security measures against common web attacks like SQL injection and cross-site scripting. Learn about AutoSpear, a tool designed to automatically bypass and inspect WAFs, challenging the claims of timely updates and indestructibility. Gain insights from security researchers Zhenqing Qu, Xiang Ling, and Chunming Wu as they present their findings on the potential weaknesses in these crucial web application defense mechanisms.

Syllabus

AutoSpear: Towards Automatically Bypassing and Inspecting Web Application Firewalls


Taught by

Black Hat

Related Courses

Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security Chip
Black Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube