YoVDO

JS-ON - Security-OFF - Abusing JSON-Based SQL Queries

Offered By: Black Hat via YouTube

Tags

Black Hat Courses MySQL Courses PostgreSQL Courses SQLite Courses Relational Databases Courses JSON Courses Database Security Courses

Course Description

Overview

Explore the security implications of native JSON features in major SQL-based database engines in this 23-minute Black Hat conference talk. Delve into how Postgres, SQLite, MS SQL, and MySQL have incorporated JSON capabilities, enabling complex data interactions with JSON-type objects. Discover the potential risks these default-enabled features introduce and learn about their hackability. Gain insights from security researcher Noam Moshe as he presents findings on exploiting JSON-based SQL queries, highlighting the importance of awareness among developers and researchers. Access the full abstract and presentation materials for a comprehensive understanding of this critical security topic.

Syllabus

{JS-ON: Security-OFF}: Abusing JSON-Based SQL Queries


Taught by

Black Hat

Related Courses

Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security Chip
Black Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube