Modern AppSec Gotchas

Explore 12 modern application security gotchas in this 41-minute conference talk by Fletcher Heisler at Circle City Con 2019. Delve into crucial topics including security headers, host headers, debugging, SQL injection, cross-site scripting, XML injection, cross-site requests, authentication and authorization, and known vulnerabilities. Learn about reviewing default configurations, prevention checklists, and QA checklists to enhance your application security knowledge. Gain valuable insights into common pitfalls and best practices for securing modern applications.

Intro
About Hunter
Motivation
Security headers
Host headers
Debugging
SQL Injection
Crosssite scripting
XML injection
Crosssite requests
Authentication authorization
Known vulnerabilities
Other stuff
Review default configuration
Prevention checklists
QA Checklists