YoVDO

Practical Crypto Attacks Against Web Applications

Offered By: Security BSides London via YouTube

Tags

Security BSides Courses Cryptography Courses Web Application Security Courses

Course Description

Overview

Explore practical cryptographic attacks against web applications in this Security BSides London conference talk. Delve into the fundamentals of encryption modes, including ECB and CBC, and learn about block swapping techniques. Witness a live demonstration of exploiting vulnerabilities, and gain insights into padding oracles, their effects, and the concept of padding. Discover the intricacies of flipping attacks, error handling, and the implications of signed data in cryptographic systems. Enhance your understanding of web application security through real-world examples and expert analysis.

Syllabus

Intro
Overview
The Basics
ECB Mode
Swapping Blocks
Live Example
CBC Mode
Padding Oracle
What is padding
Flipping
Errors
Oracle effect
Signed


Taught by

Security BSides London

Related Courses

Early Detection through Deception
YouTube Hack for Show, Report for Dough - Brian King
YouTube Blue Teamin on a Budget of Zero - Kyle Bubp
YouTube Windows Event Logs - Zero to Hero
YouTube Weaponizing Splunk - Using Blue Team Tools for Evil
YouTube