Presentation is loading. Please wait.

Presentation is loading. Please wait.

Software Security Lecture 6 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Software Security Lecture 6 Fang Yu Dept. of MIS, National Chengchi University Spring 2011."— Presentation transcript:

1 Software Security Lecture 6 Fang Yu Dept. of MIS, National Chengchi University Spring 2011

2 Outline  Today we will have Eric presenting how to attack application logic flaws (Ch10) and Rue-June presenting how to automating bespoke (custom made) attacks (Ch13)  We will also have Tony lead the discussion on the paper: Prophiler: a Fast Filter for the Large-Scale Detection of Malicious Web Page, WWW 2011  The course website :  http://soslab.nccu.edu.tw/Courses.html http://soslab.nccu.edu.tw/Courses.html

3 Next Week  We will have Hsin presenting Exploring Path Traversal (Chapter 10), Kuan-Ming presenting Hacker’s Toolkit (Chapter 19)  We will also have Adam lead the discussion on the paper: Protecting Browsers from Extension Vulnerabilities, NDSS 2010  We will also have the first tool presentation for Burp Intruder, which can help you to achieve automating bespoke attacks.

Download ppt "Software Security Lecture 6 Fang Yu Dept. of MIS, National Chengchi University Spring 2011."

Similar presentations

SO YOU WANT TO BE A HACKER? Maybe not yet, but you will at the end of the hour!

SO YOU WANT TO BE A HACKER? Maybe not yet, but you will at the end of the hour!
The Threat Landscape Jan 2013. 2013 Threat Report 2.

The Threat Landscape Jan Threat Report 2.
Honeypots Presented by Javier Garcia April 21, 2010.

Honeypots Presented by Javier Garcia April 21, 2010.
Software Security Lecture 4 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.

Software Security Lecture 4 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
Software Security Lecture 11 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.

Software Security Lecture 11 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
Secure web browsers, malicious hardware, and hardware support for binary translation Sam King.

Secure web browsers, malicious hardware, and hardware support for binary translation Sam King.
Automating Bespoke Attack Ruei-Jiun Chapter 13. Outline Uses of bespoke automation ◦ Enumerating identifiers ◦ Harvesting data ◦ Web application fuzzing.

Automating Bespoke Attack Ruei-Jiun Chapter 13. Outline Uses of bespoke automation ◦ Enumerating identifiers ◦ Harvesting data ◦ Web application fuzzing.
Software Security Lecture 9 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.

Software Security Lecture 9 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
Into the Mind of the Hacker: Hands-On Web Application Hacking Adam Doupé University of California, Santa Barbara 4/23/12.

Into the Mind of the Hacker: Hands-On Web Application Hacking Adam Doupé University of California, Santa Barbara 4/23/12.
Software Security Lecture 12 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.

Software Security Lecture 12 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
Software Security Lecture 8 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.

Software Security Lecture 8 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
Software Security Lecture 10 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.

Software Security Lecture 10 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
Software Security Lecture 0 Fang Yu Dept. of MIS National Chengchi University Spring 2011.

Software Security Lecture 0 Fang Yu Dept. of MIS National Chengchi University Spring 2011.
Software Security Lecture 5 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.

Software Security Lecture 5 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
Mod Security (Is it worth it?) By Rich Helton. Abstract (see my paper for sources)  Based on statistics, Apache is the most used web server being used.

Mod Security (Is it worth it?) By Rich Helton. Abstract (see my paper for sources)  Based on statistics, Apache is the most used web server being used.
CSCD 434 Spring 2011 Lecture 1 Course Overview. Contact Information Instructor Carol Taylor 315 CEB Phone: 509-359-6908 Office.

CSCD 434 Spring 2011 Lecture 1 Course Overview. Contact Information Instructor Carol Taylor 315 CEB Phone: Office.
Factors to be taken into account when designing ICT Security Policies

Factors to be taken into account when designing ICT Security Policies
1 Session-13 CSIT 121 Spring 2006 Test-1 is on March 9 th ; Demo-5 due date extended to March 7 Test-1 is on March 9 th ; Demo-5 due date extended to.

1 Session-13 CSIT 121 Spring 2006 Test-1 is on March 9 th ; Demo-5 due date extended to March 7 Test-1 is on March 9 th ; Demo-5 due date extended to.
Internet Quarantine: Requirements for Containing Self-Propagating Code David Moore et. al. University of California, San Diego.

Internet Quarantine: Requirements for Containing Self-Propagating Code David Moore et. al. University of California, San Diego.
Jan. 25, 2001CSci 250 - Clark University1 CSci 250 Software Design & Development Lecture #4 Thursday, Jan. 25, 2001.

Jan. 25, 2001CSci Clark University1 CSci 250 Software Design & Development Lecture #4 Thursday, Jan. 25, 2001.

Similar presentations

Ads by Google