Common Security Flaws in Search Engines

Presented at ToorCon: Seattle 2013, July 6, 2013, 11:20 a.m. (20 minutes).

Java based CMS and other products often use the Lucene framework to implement the search functionality. In this talk, Jens explain the basics about search engines and describe the common issues in the implementation of this framework. He also talks about the potential of miss-using search engines by an example demo.


Presenters:

  • Jens Muecke
    Jens is hacker from Hamburg, Germany. He's co-founder of the attraktor hackerspace, CCC member and working in infosec. Earlier in his career, he worked in software development, architecture and analysis. In his spare time, Jens solders with micro-controllers, listen to satellites and travel to hackerspaces and communities around the globe. He has also a special relation to Seattle.

Links:

Similar Presentations: