YoVDO

Attacking XML Processing

Offered By: Hack in Paris via YouTube

Tags

Hack in Paris Courses Cybersecurity Courses XSLT Courses XPath Courses

Course Description

Overview

Explore the security implications of XML technologies in this 47-minute conference talk from Hack in Paris. Delve into a year-long research on XML format and processing practices, covering targets from browsers to enterprise-level security solutions and web-service back-ends. Examine key technologies including XML grammar (DTD), homo-iconicity, self-contained dynamic SVG images, design and implementation vulnerabilities in XSLT and XPath engines, in-memory exploitation of Java-based XSLT engines, and XML databases. Learn about systematically released proof-of-concept code for patched vulnerabilities, gaining valuable insights into potential security risks and mitigation strategies in XML processing.

Syllabus

Nicolas Gregoire Attacking XML Processing


Taught by

Hack in Paris

Related Courses

Automate an e-commerce web application using Selenium & Java
Coursera Project Network via Coursera Web Scraping in Python
DataCamp Web Scraping in R
DataCamp Master XPath and CSS Selectors for Selenium WebDriver
Udemy Master XPath, Css Selector, and Other Locators in Selenium
Coursera Project Network via Coursera