The Art of Exploiting Injection Flaws



User avatar


Posts: 12

Joined: Thu Apr 21, 2011 5:13 pm

Post Sat Mar 10, 2012 2:21 pm

The Art of Exploiting Injection Flaws

There are still a few seats left in the upcoming course on exploiting injection flaws at Appsec DC. The course will take place on April 2nd and 3rd.

The abstract of the course is:

OWASP rates injection flaws as the most critical vulnerability within the Top 10 most Critical Web Application Security Risks under the OWASP Top 10 project. http://www.owasp.org/index.php/Top_10_2010-A1. This hands-on session will only focus on the injection flaws and the attendees will get an “in-depth” understanding of the flaws arising from this vulnerability. The topics covered in the class are, SQL Injection, XPATH Injection, LDAP Injection, Hibernate Query Language Injection, Direct OS Code Injection, and XML Entity Injection. The workshop covers classical issues such as SQL Injection, which is an oldie yet very relevant in today’s scenario as well as some lesser known injection flaws such as LDAP, XPATH and XML Injection. During the 2 days course, the attendees will have access to a number of challenges for each flaw and they will learn a variety of exploitation techniques used by the attackers in the wild. Identify, extract, escalate, execute; we have got it all covered.

Please register here:
http://www.regonline.com/builder/site/D ... ID=1021433

Course page:

For more info contact me at:


User avatar

Hero Member
Hero Member

Posts: 1718

Joined: Mon Jan 29, 2007 2:59 pm

Post Thu Apr 12, 2012 9:11 am

Re: The Art of Exploiting Injection Flaws

Apologies, but posting the SAME message, in three different threads, is NOT appropriate.  The moderators will move your post, if needed, to the right place. 
~ hayabusa ~ 

"All men can see these tactics whereby I conquer,
but what none can see is the strategy out of which victory is evolved."
- Sun Tzu, 'The Art of War'

OSCE, OSCP (Former - GPEN, C|EH - both expiring / expired)

Return to Web Applications

Who is online

Users browsing this forum: No registered users and 0 guests

Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software