GOTO is a vendor independent international software development conference with more that 90 top speaker and 1300 attendees. The conference cover topics such as .Net, Java, Open Source, Agile, Architecture and Design, Web, Cloud, New Languages and Processes

Presentation: "Live hacking a web application"

Track: Security / Time: Monday 11:30 - 12:20 / Location: Lille Sal, BORA BORA

Maybe you already know XSS, CSRF, SQL-Injection, Double Encoding and so on, or at least some of them. In this session, Mike will show you how one could combine all of these techniques together with social engineering to hack a 99 percent secure web application.

Everything will be shown live on a real-world application and you can see how small security flaws can lead to severe problems.

Mike Wiesner, Senior Technical Trainer for VMware Inc.

No picture of Mike Wiesner

Biography: Mike Wiesner

Mike Wiesner has 10+ years experience in (Java) application security development and consulting. He is a committer of the Spring Security Framework and the creator of the Spring Security Kerberos Extension. He regularly speaks at various conferences and publishes work around Application Security. Mike currently works as a Senior Technical Trainer for VMware Inc.
 
Twitter: @mikewiesner