Commix - Detecting and Exploiting Command Injection Flaws
Offered By: Black Hat via YouTube
Course Description
Overview
Explore the intricacies of command injection vulnerabilities and their detection through this 30-minute Black Hat conference talk. Delve into the prevalence and high impact of command injection attacks across various operating systems and programming languages. Learn about Commix, an open-source tool designed to automate the detection and exploitation of command injection flaws in web applications. Discover the tool's extensive functionalities and its high success rate in identifying vulnerable applications. Gain insights into a comprehensive analysis and categorization of command injection attacks, and witness the revelation of several 0-day vulnerabilities detected by Commix in various web-based applications, ranging from home services to web servers.
Syllabus
Commix: Detecting and Exploiting Command Injection Flaws
Taught by
Black Hat
Related Courses
Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security ChipBlack Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube