The State of Application Security 2023 - Learnings from 4 Million Scanned Services - Unveiling the Power of Proactive Cybersecurity Investments
Offered By: GOTO Conferences via YouTube
Course Description
Overview
Explore the current state of application security in this 45-minute conference talk from GOTO Copenhagen 2023. Delve into the findings from Heyhack's comprehensive study of 4 million public-facing web services worldwide. Gain insights into key vulnerabilities, including file leaks, dangling DNS records, vulnerable FTP servers, and cross-site scripting. Watch live demonstrations of security exploits and learn from a case study on Fortnite. Discover the role of Web Application Firewalls (WAF) in cybersecurity. Understand the importance of proactive investments in security and take away practical lessons to enhance your organization's digital defenses. This talk provides a detailed snapshot of the online security landscape, offering concrete examples of prevalent cyber risks and strategies to mitigate them.
Syllabus
https://127.0.0.00/ui/panel
Intro
Agenda
2011 study
Results from Heyhack's global AppSec study 2023
2023 study overview
File leaks
Dangling DNS records
Dangling Records demo
Dangling DNS records continued
Vulnerable FTP servers
ProFTP demo
Cross-site scripting
Cross-site scripting demo
Case study: Fortnite
WAF: Web Application Firewalls
Learnings
Proactive investments
Takeaways
Outro
Taught by
GOTO Conferences
Related Courses
Security Event Triage: Revealing Attacker Methodology in Web Application EventsPluralsight Securing Applications in Microsoft Azure
Pluralsight AWS Administration: Security Fundamentals
LinkedIn Learning AWS Certified Solutions Architect - Associate (SAA-C02): 7 Application Deployment
LinkedIn Learning Azure Administration: Load Balancers and Application Gateways
LinkedIn Learning