Web Application Security presentation in Guernsey

This presentation is now available on-line.

I will be giving a talk about web application security tonight at the Guernsey Software Developers Forum.

Web application security is a very large subject I will only be covering SQL injection, HTML injection/cross-site scripting and input manipulation. If there is enough interest I’ll consider covering other subjects such as session hijacking, defensive programming, hashing etc. in a future talk.

As always the doors are open to everyone opening at 6pm tonight (Wednesday 15 August 2007) at the Guernsey Training Agency above the Post Office in Smith Street.

The talk will last around 30 minutes but the meetings tend to go on to around 7:30pm for those that want to discuss it or other developer topics.

[)amien

2 responses  

  1. pingback

    […] of vulernable and secure code are in my presentation on Web Security I gave at the Guernsey Software Developer Forum a few months […]

    Security vulnerabilities are not acceptable in sample codeOctober 29th, 2007
  2. pingback

    […] fail to encode output which opens them up to HTML and script injection vulnerabilities. Remember to HttpUtility.HtmlEncode output and use Reflector if you’re unsure whether a function is encoding […]

    ASP.NET MVC preview available » DamienGDecember 10th, 2007

Respond to this