Patrick recorded the talk and posted it on his YouTube channel. Like everything he does, it’s quite good. So I’m sharing it here.
Laverty described his talk this way:
“As defenders, we have to be right 100% of the time where an attacker only needs to be right once. The attack surface of a modern web site is incredibly large and we need to be aware of all of it. Additionally, individual attacks may not always be effective but sometimes using them together can gain the desired effect. In this talk, we’ll take a look at the whole attack surface for a typical web site and the various ways that an attacker will use to compromise a site.”
Today was a pretty great day, presenting for the OWASP Boston Application Security Conference held at Microsoft in Cambridge. My talk was “How Hackers Views Your Web Site” and I thought it was pretty well received. It had a great audience that seemed to enjoy it. I have a lot of fun with the topic as well. It’s one that most people in infosec probably already are aware of all the pieces but when you see it all at once, it’s like “Hmm, yeah, there’s that too.”