Presentation is loading. Please wait.

Presentation is loading. Please wait.

MIS 5212.001 Week 9 Site:

Published byPhoebe Floyd Modified over 8 years ago

Similar presentations

Presentation on theme: "MIS 5212.001 Week 9 Site:"— Presentation transcript:

1 MIS 5212.001 Week 9 Site: http://community.mis.temple.edu/mis5212sec001s15/ http://community.mis.temple.edu/mis5212sec001s15/

2  In the news  More Walk Through of WebGoat  Next Week 2MIS 5212.001

3  Submitted  http://www.cnet.com/news/fridge-caught-sending- spam-emails-in-botnet-attack/ http://www.cnet.com/news/fridge-caught-sending- spam-emails-in-botnet-attack/  http://arstechnica.com/security/2015/03/bogus-ssl- certificate-for-windows-live-could-allow-man-in-the- middle-hacks/ http://arstechnica.com/security/2015/03/bogus-ssl- certificate-for-windows-live-could-allow-man-in-the- middle-hacks/  http://www.wired.com/2015/03/nsa_domains/?mbid= social_twitter http://www.wired.com/2015/03/nsa_domains/?mbid= social_twitter  http://www.scmagazine.com/premera-blue-cross- attack-may-have-exposed-data-on-11m- customers/article/404052/ http://www.scmagazine.com/premera-blue-cross- attack-may-have-exposed-data-on-11m- customers/article/404052/  http://www.darkreading.com/the-7-best-social- engineering-attacks-ever/d/d-id/1319411 http://www.darkreading.com/the-7-best-social- engineering-attacks-ever/d/d-id/1319411 MIS 5212.0013

4  Submitted  http://thehackernews.com/2015/03/cardless-atm- smartphone.html http://thehackernews.com/2015/03/cardless-atm- smartphone.html  http://thehackernews.com/2015/03/google-play- store-app-review.html http://thehackernews.com/2015/03/google-play- store-app-review.html  http://www.newsy.com/videos/yahoo-s- password-free-login-has-its-own-set-of-problems/ http://www.newsy.com/videos/yahoo-s- password-free-login-has-its-own-set-of-problems/  http://www.csoonline.com/article/2898735/data- protection/corporate-culture-hinders-cyber- insurance-buy-in.html http://www.csoonline.com/article/2898735/data- protection/corporate-culture-hinders-cyber- insurance-buy-in.html MIS 5212.0014

5  What I noted  http://www.dailydot.com/politics/federal- websites-https-secure-proposal/ http://www.dailydot.com/politics/federal- websites-https-secure-proposal/  http://www.itworld.com/article/2897775/research ers-find-same-rsa-encryption-key-used-28000- times.html http://www.itworld.com/article/2897775/research ers-find-same-rsa-encryption-key-used-28000- times.html  http://www.forbes.com/sites/thomasbrewster/201 5/03/17/apple-mac-gatekeeper-bypass-exacerbated- by-unencrypted-av-downloads/ http://www.forbes.com/sites/thomasbrewster/201 5/03/17/apple-mac-gatekeeper-bypass-exacerbated- by-unencrypted-av-downloads/  http://krebsonsecurity.com/2015/03/dark-webs- evolution-market-vanishes/ http://krebsonsecurity.com/2015/03/dark-webs- evolution-market-vanishes/ MIS 5212.0015

6  Injection Flaws:  Command Injection: " & netstat -ant & ifconfig“  Numerical SQL Injection: or 1=1  Log Spoofing  XPATH Injection  String SQL Injection  Modifying Data with SQL Injection  Adding Data with SQL Injection  Blind Numeric SQL Injection  Blind String SQL Injection MIS 5212.0016

7  Test 2  Intro to Wireless MIS 5212.0017

8 ? 8

Download ppt "MIS 5212.001 Week 9 Site:"

Similar presentations

Webgoat.

Webgoat.
OWASP WEBGOAT Alaa Darabseh Department of Computer Science

OWASP WEBGOAT Alaa Darabseh Department of Computer Science
WebGoat & WebScarab “What is computer security for $1000 Alex?”

WebGoat & WebScarab “What is computer security for $1000 Alex?”
How Did I Steal Your Database Mostafa

How Did I Steal Your Database Mostafa
Automating Bespoke Attack Ruei-Jiun Chapter 13. Outline Uses of bespoke automation ◦ Enumerating identifiers ◦ Harvesting data ◦ Web application fuzzing.

Automating Bespoke Attack Ruei-Jiun Chapter 13. Outline Uses of bespoke automation ◦ Enumerating identifiers ◦ Harvesting data ◦ Web application fuzzing.
 SMALL  50  BIG  100 ANTE 0 End NEXT LEVEL 100 200.

 SMALL  50  BIG  100 ANTE 0 End NEXT LEVEL
Good & Bad Websites. From WEB 1. Submit one bad or ugly web site or web interface. This is ugly website because there are.

Good & Bad Websites. From WEB 1. Submit one bad or ugly web site or web interface. This is ugly website because there are.
Information Networking Security and Assurance Lab National Chung Cheng University WebGoat.

Information Networking Security and Assurance Lab National Chung Cheng University WebGoat.
MIS 5212.001 Week 3 Site:

MIS Week 3 Site:
MIS 5212.001 Week 11 Site:

MIS Week 11 Site:
MIS 5211.001 Week 7 Site:

MIS Week 7 Site:
Batak Programming Language

Batak Programming Language
MIS 5211.001 Week 11 Site:

MIS Week 11 Site:
ISOM MIS3150 Data and Info Mgmt Database Security Arijit Sengupta.

ISOM MIS3150 Data and Info Mgmt Database Security Arijit Sengupta.
SQL Power Injector Avadanei AlinBalan Robert. What is SQL Power Injector ?  A graphical application created in C#.Net 1.1 that helps the penetration.

SQL Power Injector Avadanei AlinBalan Robert. What is SQL Power Injector ?  A graphical application created in C#.Net 1.1 that helps the penetration.
Analysis of SQL injection prevention using a proxy server By: David Rowe Supervisor: Barry Irwin.

Analysis of SQL injection prevention using a proxy server By: David Rowe Supervisor: Barry Irwin.
MIS 5212.001 Week 5 Site:

MIS Week 5 Site:
Copyright © 2004 - The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation.
Analysis of SQL injection prevention using a proxy server By: David Rowe Supervisor: Barry Irwin.

Analysis of SQL injection prevention using a proxy server By: David Rowe Supervisor: Barry Irwin.
Ma 375 - Communicating Mathematics Class 24 Cleaning up from last time Carl Eberhart and Paul Eakin.

Ma Communicating Mathematics Class 24 Cleaning up from last time Carl Eberhart and Paul Eakin.

Similar presentations

Ads by Google