This page is dedicated to presentations and lectures given by AppSec Labs staff in different platforms, enjoy!
Blog post about our very own Chilik Tamir's iNalyzer tool, in which the writer states his opinion about it:
"...iNalyzer is a great testing framework for iOS applications...."
Click the link and take a look!
OWASP Top 10 Risks - demonstration videos, taken from AppSec Labs' application security awareness course:
- SQL Injection
- Cross-Site Scripting (XSS)
- Broken Authentication & Session Management
- Insecure Direct Object References
- Cross-Site Request Forgery (CSRF)
- Security Misconfiguration
- Insecure Cryptographic Storage
- Failure to Restrict URL Access
- Insufficient Transport Layer Support
- Unvalidated Redirects & Forwards
Belch is a binary protocol pen-testing tool. It is used to aid in automation of testing AMF and Java-Serialization applications:
Source Boston 2010, a talk given by Erez Metula (click the link to watch the video):
Defcon 17, 2009, Erez Metula on Managed Code Rootkits:
