Penetration testing for developers
SQL injection, password cracking, session hijacking... As a developer, you've probably heard of some of these terms, and might be aware of the basic measures to counter them. But how does a hacker execute such attacks? What tools do they use? And how easy would it be to attack your own application? By starting to think like our adversaries, we have a better chance of finding vulnerabilities in our software before they can be exploited.
In this talk we will look at a few tools used by attackers and ethical hackers alike to find (and exploit) vulnerabilities in web applications. By the end of the talk, you will have a better understanding of how an attacker might target your application and how you can use the same tools to discover vulnerabilities yourself first.
Target audience
This talk is aimed at developers who want to learn more about how they can use penetration testing to improve the security of their applications.
- Language: English
- Duration: 30-40 minutes
- Level: intermediate
About the speaker
Nic Wortel is an independent software consultant and trainer. After working as a software engineer for over 10 years, he started to offer consulting and training services to help other teams improve their software development processes. From time to time he speaks at meetups and conferences about software development, PHP, DevOps, security, and related topics.