Dr. Evil's Guide to Web 2.0

Presented at THOTCON 0x1 (2010), April 23, 2010, 1:30 p.m. (50 minutes).

You have no choice but to deal with the �Web 2.0 phenomenon� � but most people have no idea how dangerous these technologies are. Web 2.0 is old technologies held together with duct tape and implicit trust, and exploiting them often doesn�t involve a whole lot of technical knowledge � In this talk you�ll see and learn the concepts behind testing, manipulating, and penetrating the new �Web 2.0� technologies. There will be demos, code snips, and analysis � Come learn why the new wave in web application technologies, based on end-user interaction and increased functionality is even easier to �hack� than you think.

Presenters:

• Rafal Los / whit3rabbit   as Rafal Los
  Rafal is 16+ year veteran of the IT world, working as a penetration tester, researcher then consultant, architect and Information Security Officer at companies ranging from SMBs to a stretch with a Fortune 5.

Links:

• https://www.thotcon.org/archive/speakers-0x1.html#los
• https://www.thotcon.org/archive/0x1presos/07_THOTCON_0x1-Dr_Evils_Guide_to_Web_20-Los.pdf

Similar Presentations:

• DEF CON 17 (2009) / The Security Risks of Web 2.0
• ToorCon: Seattle (Beta) (2007) / Web 4.0
• DEF CON 13 (2005) / Attacking Web Services: The Next Generation of Vulnerable Apps