Defense Against the Dark Ages: Your Old Web Apps Are Trying to Kill You Aaron Margosis Principal Consultant Microsoft Corporation SIA324.

Slides:



Advertisements
Similar presentations
Malware Hunting with the Sysinternals Tools
Advertisements

Defense Against the Dark Ages: Your Old Web Apps Are Trying to Kill You Aaron Margosis Principal Consultant Microsoft Corporation SIA324.
Sysinternals Primer: Gems Aaron Margosis Principal Consultant Microsoft Corporation SIA311.
Customizing the User State Migration Tool Michael Niehaus Senior Program Manager Microsoft Corporation WCL322.
Exploring SQL Server Data Tier Applications Gert Drapers Principal Group Program Manager Microsoft Corporation Adam Mahood Program Manager.
Data Mining 2012 with Microsoft Excel 2010 and PowerPivot Mark Tabladillo, Ph.D. Microsoft MVP, Data Mining Architect MarkTab Consulting DBI204.
Building Integrated Microsoft Office 365, SharePoint Online, and Office Solutions Using BCS and LOB Data Donovan Follette Sr. Technical.
Evaluations Submit your evals online.
Top 10 Production Experiences with Service Manager and Orchestrator Nathan Lasnoski Infrastructure Architect Microsoft MVP Concurrency.
Branding and Customizing My Sites with Microsoft SharePoint Server 2010 John Ross & Randy Drisgill MVPs Rackspace Hosting OSP337.
App Compat for Nerds: Understanding, Troubleshooting, and Fixing Busted Apps chris jackson principal consultant microsoft corporation WCL402.
Optimizing Microsoft SQL Server Analysis Services for Big Data Adam Jorgensen Microsoft Corporation.
RemoteFX and RDP Rocking RDS in Windows Server 2012 Adam Carter Product Marketing Manager Microsoft Corporation Rob Williams Principal Program Manager.
SQL Server Columnstore Performance Tuning Eric N Hanson Principal Program Manager Microsoft Corporation.
Dev-Ops Best Practices on the Microsoft Stack Victor Mushkatin Group Program Manager Microsoft Corporation DEV363.
Building Metro style UIs Paul Gusmorino Lead Program Manager Microsoft Corporation DEV354.
Building Metro style apps with HTML and JavaScript Paul Gusmorino Lead Program Manager Microsoft Corporation.
A long time ago, before I started working in the PC world, I was a government economist. I don't do that any more, but being an economist gives you a framework.
The Dirty Dozen: Windows PowerShell Scripts for the Busy DBA Ike Ellis.
Visual Studio Tips & Tricks Dustin Campbell Microsoft Corporation Scott Cate EventDay.com DEV319.
Building Windows 8 Apps for the Enterprise Robert Green Technical Evangelist Microsoft Corporation DEV358.
Advanced Microsoft SharePoint 2010 Upgrade Troubleshooting Todd Klindt SharePoint Nerd Rackspace OSP339.
Building SharePoint Online Applications in a Hybrid World Chris Johnson General Manager Provoke Solutions - Seattle OSP331.
SQL Server xVelocity memory optimized Columnstore Index Performance Tuning Rapinder Jawanda Sr. Program Manager Microsoft Corporation.
Using the Windows Server 2012 Server Manager for Remote and Multi-Server Management Ian Lucas Principal Program Manager Microsoft Corporation WSV335.
App Controller Richard Rundle Ketan Ghelani Program Managers Microsoft Corporation MGT303.
ASP.NET for Mobile and Tablet Development Damian Edwards Senior Program Manager Microsoft Corporation.
Visual C#/Visual Basic: Becoming a Guru with Existing Features Peter Ritchie Principle Peter Ritchie Inc. Software Consulting DEV325.
An Inside View of Microsoft Exchange 2010 SP2 Jeff Mealiffe Sr. Program Manager Microsoft Corporation EXL304.
Windows Phone: Building Enterprise Apps Rob Tiffany Architect Microsoft Corporation WPH207.
4/24/2017 1:34 PM © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.
Making Entitlements in AD Understandable to the Business Rob de Jong Senior Program Manager Microsoft Corporation SIA314.
What’s New with IIS 8: Open Web Platform for Cloud Shaun Eagan Senior Program Manager Microsoft Corporation Wade A. Hilmo Principal Development Lead Microsoft.
Demystifying Team Foundation Server Builds Mickey Gousset Principal Consultant Infront Consulting Group DEV342.
Demystifying Forefront Edge Security Technologies – TMG and UAG Richard Hicks Director – Sales Engineering Celestix Networks, Inc. SIA208.
Taking Control of Visual Studio through Extensions and Extensibility Anthony Cangialosi Senior Program Manager Lead Microsoft Corporation DEV311.
Sysinternals Primer: Gems Aaron Margosis Principal Consultant Microsoft Corporation SIA311.
What’s New in WCF 4.5? Richard Blewett Rock Solid Knowledge Ltd DEV326.
WCL328 - Windows Intune for the Enterprise David Nudelman Senior Consultant – Microsoft MVP OCSL - UK.
OSP201: Creating Self- Service BI Solutions with SharePoint Server 2010 Peter Myers.
Enabling Disaster Recovery for Hyper-V Workloads Using Hyper-V Replica Vijay Sistla Senior Program Manager Microsoft Corporation VIR302.
App Controller Tabrez Mohammed Yuan Zheng Program Managers Microsoft Corporation MGT303.
Application Lifecycle Management Tools for C++ in Visual Studio 2012 Rong Lu Program Manager Visual C++ Microsoft Corporation DEV316.
The Ultimate Guide to Building Wireless Network Security Hasain Alshakarti Senior Security Advisor, Microsoft MVP Enterprise Security TrueSec Inc SIA307.
What’s New in.NET 4.5 Layla Driscoll Senior Program Manager Microsoft Corporation.
Cloud-Ready Data Services. cloud data services.
What web developers need to know when building Metro style apps Scott Dickens Principal Program Manager Lead Microsoft Corporation DEV352.
Antimalware Smackdown Name: Frank Simorjay Title: TwC Sr. Product Manager Microsoft Corporation Name: Scott Wu Title: MMPC Technical Program Manager Microsoft.
ASP.NET Loves HTML5 Mads Kristensen Program Manager Microsoft Corporation DEV303.
Making Agile Estimation Work Joel Semeniuk and Stephen Forte Microsoft Corporation AAP309.
Demystifying Forefront Edge Security Technologies – TMG and UAG Richard Hicks Director – Sales Engineering Celestix Networks, Inc. SIA208.
Going Beyond F11: Debug Better and Faster with Visual Studio 2012 Brian A. Randell Senior Consultant MCW Technologies DEV317.
Building Metro style apps with XAML with.NET Tim Heuer Program Manager Microsoft Corporation DEV353.
Building the Perfect BI Semantic Model for Power View
SIA304 Learning the Basics of Penetration Testing!
Sysinternals Tutorials
11/21/2018 4:57 AM SIA303 Advanced Persistent Threats (APT): Understanding the New Era of Attacks! Marcus Murray Security Team Manager, Microsoft MVP –
12/1/2018 9:33 PM © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.
TechEd /2/2018 5:42 PM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.
Using Windows Runtime and SDK to build Metro style apps
Building SaaS Solutions on Windows Azure
Developing and Managing SharePoint Solutions with Visual Studio 2012
Building the Perfect BI Semantic Model for Power View
ASP.NET Roadmap: One ASP.NET – Web Forms, MVC, Web API, and more
2/28/2019 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
Creating and Consuming OData Services for Business Applications
Developer Collaboration with Team Foundation Server 2012
7/5/2019 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
8/4/ :27 PM © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.
What’s New in Visual Studio 2012 for Web Developers
Presentation transcript:

Defense Against the Dark Ages: Your Old Web Apps Are Trying to Kill You Aaron Margosis Principal Consultant Microsoft Corporation SIA324

Book signings with Mark and Aaron Friday, 11:45-12:15 MS Press / O’Reilly booth (#26) Mark will also be signing Zero Day and Windows Internals 6 th Ed Pt. 1 Book signings with Mark and Aaron Friday, 11:45-12:15 MS Press / O’Reilly booth (#26) Mark will also be signing Zero Day and Windows Internals 6 th Ed Pt. 1

topic Java past its sell-by date

topic Carrying old IE settings forward

Copying preserved legacy settings… Importing custom registry files regedit /s ie-settings.reg

NOTE: IEM is gone in Windows 8!

topic Using unsafe ActiveX in web apps

Set obj = CreateObject("UnsafeActiveX") obj.DoStuff("Fun stuff") Unsafe ActiveX Component

Set obj = CreateObject(“SafeActiveX") obj.DoStuff("Useful stuff") Safe-for-scripting ActiveX Component Unsafe ActiveX Component

demo Using an unsafe ActiveX in a web app… then FIXING it!

Connect. Share. Discuss. Learning Microsoft Certification & Training Resources TechNet Resources for IT Professionals Resources for Developers

Evaluations Submit your evals online

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.