Live Hack: Finding Security Vulnerabilities Before They Find You!
Back-end • October 2020
Live Hack: Finding Security Vulnerabilities Before They Find You!
About
Live Hack: Finding Security Vulnerabilities Before They Find You!
About

Open-source modules are undoubtedly awesome. However, they also represent an undeniable and massive risk. You’re introducing someone else’s code into your system, often with little or no scrutiny. The wrong package can introduce severe vulnerabilities into your application, exposing your application and your user's data.

This talk will use a sample application, Goof, which uses various vulnerable dependencies, which we will exploit as an attacker would. For each issue, we'll explain why it happened, show its impact, and – most importantly – see how to avoid or fix it. We'll live hack exploits

Language
English
Level
Intermediate
Length
32 minutes
Type
online conference
About the speaker
About the speaker
Brian Vermeer
Developer AdvocateSnyk
Developer Advocate for Snyk, Java Champion, and Software Engineer with over a decade of hands-on experience in creating and maintaining software. He is passionate about Java, (Pure) Functional Programming and Cybersecurity. Brian is a JUG leader for the Virtual JUG and the NLJUG. He also co-leads the DevSecCon community and is a community manager for Foojay. He is a regular international speaker on mostly Java-related conferences like JavaOne, Devnexus, Devoxx, Jfokus, JavaZone and many more. Besides all that, Brian is a military reserve for the Royal Netherlands Air Force and a Taekwondo Mast
Details
Language
English
Level
Intermediate
Length
32 minutes
Type
online conference