Application Security, Vulnerability management

Sven Morgenroth, Netsparker – Paul’s Security Weekly #584

December 1, 2018

Sven will talk about PHP Object injection vulnerabilities and explain the dangers of PHP's unserialize function. He will show the format of serialized PHP Objects, explain PHP's magic methods and how to write an exploit for a PHP Object Injection vulnerability during his technical demo. Full Show NotesFollow us on Twitter: https://www.twitter.com/securityweekly

Hosts

[caption id="attachment_210" align="alignleft" width="120"] Larry Pesce Larry Pesce - Senior Managing Consultant and Director of Research, InGuardians.[/caption][caption id="attachment_210" align="alignleft" width="120"] Jeff Man Jeff Man - Sr. InfoSec Consultant, Online Business Systems.[/caption][caption id="attachment_210" align="alignleft" width="120"] Paul Asadorian Paul Asadorian - CEO, Security Weekly.[/caption][caption id="attachment_210" align="alignleft" width="120"] Lee Neely Lee Neely - Senior Cyber Analyst , Lawrence Livermore National Laboratory.[/caption][caption id="attachment_210" align="alignleft" width="120"] Not Kevin Not Kevin - Senior Sales Engineer, Barkly.[/caption][caption id="attachment_210" align="alignleft" width="120"] Carlos Perez Carlos Perez - Principal Consultant, Team Lead for Research, TrustedSec.[/caption]

[audio src="http://traffic.libsyn.com/sw-all/Sven_Morgenroth_Netsparker_Pauls_Security_Weekly_584_converted.mp3" ]
prestitial ad