OWASP AppSec 2010: Deconstructing ColdFusion 1/3

Comments off | script By · 03/03/2023



OWASP AppSec 2010: Deconstructing ColdFusion 1/3

OWASP AppSec 2010: Deconstructing ColdFusion 1/3

Clip 1/3
Speaker: Chris Eng, Veracode

This presentation is a technical survey of ColdFusion security, which will be of interest mostly to code auditors and penetration testers. We’ll cover the basics of ColdFusion markup, control flow, functions, and components and demonstrate how to identify common web application vulnerabilities at the source code level. We’ll also delve into ColdFusion J2EE internals, describing some of the unexpected properties we’ve observed while decompiling ColdFusion applications for static analysis.

For more information click here (http://bit.ly/aeSvg2)

53GB.COM GPTSTORE CPU Yougpt Gptsio Gpt-store-Nav