YoVDO

Nearly Generic Fuzzing of XML Based Formats

Offered By: nullcon via YouTube

Tags

nullcon Courses Cybersecurity Courses XML Courses Penetration Testing Courses XSLT Courses Bug Hunting Courses

Course Description

Overview

Explore a research project on fuzzing XML-based formats presented at nullcon Goa 2017. Learn about the two main goals: revisiting XSLT targets from 2012 with modern tools and generalizing bug-finding processes for various XML formats. Discover a newly developed tool designed specifically for mutating XML documents. Gain insights from Nicolas Gregoire, an experienced penetration tester and security researcher, as he shares his findings and methodologies. Understand the importance of responsible vulnerability disclosure and its impact on product security across multiple vendors. Delve into the world of bug bounties and learn how top rewards can be earned from major companies like Prezi and Yahoo.

Syllabus

nullcon Goa 2017 - Nearly Generic Fuzzing Of XML Based Formats by Nicholas Gregoire


Taught by

nullcon

Related Courses

Unearthing Malicious and Risky OpenSource Packages Using Packj
nullcon via YouTube Pushing Security Left by Mutating Byte Code
nullcon via YouTube The Faces of MacOS Malware - Detecting Anomalies in a Poisoned Apple
nullcon via YouTube Contextomy - Let's Debug Together
nullcon via YouTube Mind The Gap - The Linux Ecosystem Kernel Patch Gap
nullcon via YouTube