We can't find the internet
Attempting to reconnect
Something went wrong!
Hang in there while we get back on track
Devoxx Greece 2024 - Capture The Flag (CTF) By HackTheBox by Panos Petsanas
Join Panos Petsanas at Devoxx Greece 2024 for a hands-on CTF experience, exploring real-world security vulnerabilities, including access control, IDOR, XSS, and SSL/TLS, and learn the importance of security, privacy, and penetration testing.
- Access control vulnerability, not sanitising user input
- IDOR (Insecure Direct Object Reference) vulnerability
- Cross-Site Scripting (XSS) attack
- Not having SSL/TLS (HTTPS)
- Importance of security and privacy
- Role of a penetration tester
- Burp, a proxy for pen testing
- Plugging in, actively participating, and learning from real-world challenges
- Having a clear understanding of security concepts and best practices
- Writing scripts, coding, and programming
- Importance of following security protocols and maintaining privacy
- Use of a proxy to test for vulnerabilities
- Observation of security issues and finding solutions
- IDOR vulnerability is an insecure practice
- Session cookies can be stolen or manipulated
- Importance of keeping cookies and passwords safe
- Importance of sanitizing user input
- Session cookies can be changed or manipulated
- IDOR vulnerability can be exploited
- Importance of using SSL/TLS (HTTPS)
- XSS attack is a serious security issue
- Plugging in and actively participating in security challenges