Rootconf Sessions

Rootconf Sessions

Presentations on DevOps and Dev-Oops

Make a submission

Accepting submissions till 31 Dec 2020, 11:59 PM

DevOps and Dev-Oops sessions cover:

  1. DevOps (obviously!)
  2. Databases and database disasters
  3. Distributed systems
  4. Systems engineering
  5. Infrastructure security
  6. War stories, failures and anti-patterns with running operations and infrastructure

Rootconf is a forum for:

  1. DevOps engineers
  2. Systems engineers
  3. Software engineers
  4. DevOps leads
  5. Infrastructure security professionals and experts
  6. Cloud service providers
  7. Providers of the pieces on which an organization’s IT infrastructure runs -- monitoring, log management, alerting, etc
  8. Engineering managers looking to optimize infrastructure and teams

Contact information: If you have questions, call Rootconf on 7676332020 or email rootconf.editorial@hasgeek.com

Hosted by

Rootconf is a community-funded platform for activities and discussions on the following topics: Site Reliability Engineering (SRE). Infrastructure costs, including Cloud Costs - and optimization. Security - including Cloud Security. more

Pritam Singh

@prisingh

Web exploitation - Offensive way to Hunt Bugs

Submitted Feb 29, 2020

Application security testing is the act of finding security vulnerabilities proactively and responsibly disclosing it to the security team in an ethical way.
The audience will be going to learn most of the vulnerabilities of OWASP TOP 10 & basic’s of Application Security Testing (AST) with a burp suite tool and
this will be going to help them to look for the security vulnerabilities in our own product and code.

Outline

The agenda will be like:

  • Goal and Introduction to burp suite tool
  • Common Vulnerabilities in OWASP Top 10
  • Demonstration of web vulnerabilities exploitation:
  • XSS and different endpoints to exploit it
  • Host Header Injection ( redirection, cache poisoning & password reset poisoning )
  • URL/Open Redirection
  • Parameter Tampering
  • Email spoofing/Missing or insufficient SPF record
    and many more.

Speaker bio

Pritam is a Associate QE with Red Hat. He is a security researcher, WebApp security tester, and has experience in finding numerous vulnerabilities in responsible disclosure programs.

Comments

{{ gettext('Login to leave a comment') }}

{{ gettext('Post a comment…') }}
{{ gettext('New comment') }}
{{ formTitle }}

{{ errorMsg }}

{{ gettext('No comments posted yet') }}

Make a submission

Accepting submissions till 31 Dec 2020, 11:59 PM

Hosted by

Rootconf is a community-funded platform for activities and discussions on the following topics: Site Reliability Engineering (SRE). Infrastructure costs, including Cloud Costs - and optimization. Security - including Cloud Security. more