Pen Test Berlin 2013

Berlin, Germany | Mon, Jun 3 - Sat, Jun 8, 2013

Application Security - "Authorization Bypass Techniques"

  • Hassan EL Hadary
  • Tuesday, June 4th, 6:00pm - 7:00pm

Authorization bypass is one of the most critical flaws in web applications. Attackers utilize advanced logic attacks in order to bypass security controls enforced by the application and compromise sensitive data. In this presentation, we will discuss different techniques used by attackers in order to discover and exploit authorization bypass flaws. Demos will be presented using hacking tools to elaborate attack scenarios. Real life case study will be outlined.

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
Tuesday, June 4
Session Speaker Time Type
Application Security - "Authorization Bypass Techniques" Hassan EL Hadary Tuesday, June 4th, 6:00pm - 7:00pm SANS@Night