Northern Virginia 2013

Reston, VA | Mon, Apr 8 - Sat, Apr 13, 2013

Pentesting Web Apps with Python

  • Justin Searle
  • Wednesday, April 10th, 7:15pm - 8:15pm

Interested in expanding your scripting skills to further customize your penetration testing approach? The goal of this talk is to teach you basic python skills you can use every day. Join one of the SamuraiWTF project leads and learn how to interact with websites using python scripts and python shells. Understand the differences between the major HTTP libraries like httplib and urllib2. Walk through sample code that performs username harvesting and dictionary attacks. Learn how to use Python's multithreaded features to speed up your scripts. And most importantly, discover PyCIT, a new opensource project that provides simple, documented, and functional python templates to accelerate your python scripting efforts.

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
  • Vendor: Events hosted by external vendor exhibitors.
  • Lunch & Learn: Short presentations given during the lunch break.
Monday, April 8
Session Speaker Time Type
General Session - Welcome to SANS Dr. Eric Cole Monday, April 8th, 8:15am - 8:45am Special Events
APT: It is Not Time to Pray, It is Time to Act Dr. Eric Cole Monday, April 8th, 7:15pm - 9:15pm Keynote
Tuesday, April 9
Session Speaker Time Type
Vendor Showcase Tuesday, April 9th, 10:30am - 10:50am Vendor Event
Stop Spear-Phishing and Watering Hole Attacks - Put the User in a Bubble Nick Keller, Director of Sales, Mid-Atlantic Tuesday, April 9th, 12:30pm - 1:15pm Lunch and Learn
Vendor Showcase Tuesday, April 9th, 3:00pm - 3:20pm Vendor Event
Infosec Rock Star: How to be a More Effective Security Professional Ted Demopoulos Tuesday, April 9th, 7:15pm - 8:45pm SANS@Night
Wednesday, April 10
Session Speaker Time Type
Pentesting Web Apps with Python Justin Searle Wednesday, April 10th, 7:15pm - 8:15pm SANS@Night
Practical, Efficient Unix Auditing: With Scripts James Tarala Wednesday, April 10th, 8:15pm - 9:15pm SANS@Night
Thursday, April 11
Session Speaker Time Type
GIAC Program Overview Dr. Eric Cole Thursday, April 11th, 12:30pm - 1:15pm Special Events
SANS Technology Institute Open House Dr. Eric Cole Thursday, April 11th, 12:30pm - 1:15pm Special Events