June 18, 2016
Presentation on "Web Security from the Perspective of a Penetration Tester"
13th Cyber Security Day in Leipzig
On 14th June 2016, the 13th Cyber Security Day took place in Leipzig. This event was organized by the Alliance for Cyber Security, an initiative of the Federal Office for Information Security (Bundesamt für Sicherheit in der Informationstechnik - BSI). This time the event was dedicated to the topic of "Web Application Security". Owing to the huge demand, the contents were, for the first time, specifically aimed at “engineers” as target audience.
At the event Dr. Bastian Könings, Security Consultant at SCHUTZWERK GmbH, spoke about web security from the perspective of an auditor (penetration tester). He thereby explained the general procedure of the respective assessments and also described typical attacks, such as injection attacks and cross-site scripting.