Running Away from Security - Web App Vulnerabilities and OSINT Collide

Overview

Explore the intersection of web app vulnerabilities and OSINT techniques, uncovering potential security risks and learning effective mitigation strategies.

Syllabus

• Introduction to Web Application Security
Overview of Web App Architecture
Common Threat Models
Introduction to Vulnerability Types
• Introduction to OSINT (Open Source Intelligence)
Definition and Importance of OSINT
Tools and Resources for Gathering OSINT
Ethical Considerations in OSINT
• Web Application Vulnerabilities
SQL Injection
Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF)
Security Misconfigurations
Insecure Direct Object References
• OSINT Techniques and Tools
Data Harvesting from Open Sources
Analyzing Metadata
Social Media Intelligence
Geolocation and Mapping Techniques
• Intersections of Web Vulnerabilities and OSINT
Using OSINT to Uncover Web Vulnerabilities
Case Studies of Web App Breaches Facilitated by OSINT
Correlating OSINT Findings with Vulnerability Assessments
• Mitigation Strategies for Web App Vulnerabilities
Secure Coding Practices
Security Testing and Vulnerability Scanning
Implementing Web Application Firewalls
Regular Security Audits
• Mitigation Strategies for OSINT Risks
Limiting Information Exposure
Operational Security (OpSec) Techniques
Implementing Awareness Training
• Hands-On Lab Sessions
Vulnerability Discovery and Exploitation via OSINT
Defensive Configurations in Simulated Environments
• Final Project
Conduct a Security Assessment using OSINT and Vulnerability Analysis
Formulate a Comprehensive Mitigation Plan
• Course Conclusion
Recap and Key Takeaways
Future Trends in Web App Security and OSINT

Subjects

Conference Talks