Web Server Attacks Demo

This is the testbed demo for a presentation on web server & web application auditing. The presentation deals with some aspects of HIPAA §164.312(a)(1).

Some custom, intentionally weak web app examples were written to show a few different varieties of attack including SQL injection, password dictionary attacks, and insufficient data validation. In the presentation, you can see how the attack works and relevant code from the application and attack standpoint.

You can view the entire presentation by visiting Slide Share (http://www.slideshare.com/erichgoldman), and get more information at my website: http://www.ericgoldman.name.

Also, while the subtitles are embedded in the video, they have also be uploaded for translation into your native language.

Category:

Science & Technology

Tags:

• HIPAA
• auditing
• pen testing
• SQL injection
• brute force attack
• password attack
• data validation
• web vulnerability

License:

Standard YouTube License