Stranger Danger: Finding Security Vulnerabilities Before They Find You!
Back-end
• May 2021
Stranger Danger: Finding Security Vulnerabilities Before They Find You!
Explore more
About
Stranger Danger: Finding Security Vulnerabilities Before They Find You!
About
Open source modules are undoubtedly awesome. However, they also represent an undeniable and massive risk. You’re introducing someone else’s code into your system, often with little or no scrutiny. The wrong package can introduce severe vulnerabilities into your application, exposing your application and your user's data. This talk will use a sample application, Goof, which uses various vulnerable dependencies, which we will exploit as an attacker would. For each issue, we'll explain why it happened, show its impact, and – most importantly – see how to avoid or fix it. We'll live hack exploits
Language
English
Level
Intermediate
Length
31 minutes
Type
devcast
About the speaker
About the speaker
Brian Vermeer
Developer Advocate •
Snyk
Developer Advocate for Snyk, Java Champion, and Software Engineer with over a decade of hands-on experience in creating and maintaining software. He is passionate about Java, (Pure) Functional Programming and Cybersecurity. Brian is a JUG leader for the Virtual JUG and the NLJUG. He also co-leads the DevSecCon community and is a community manager for Foojay. He is a regular international speaker on mostly Java-related conferences like JavaOne, Devnexus, Devoxx, Jfokus, JavaZone and many more. Besides all that, Brian is a military reserve for the Royal Netherlands Air Force and a Taekwondo Mast
Details
Language
English
Level
Intermediate
Length
31 minutes
Type
devcast
Related tags
Related tags