Sumários

Secure applications

29 setembro 2016, 11:00 Miguel Filipe Leitão Pardal

C vulnerabilities and prevention mechanisms.
Security architecture: policies, procedures, standards and mechanisms.
Risk analysis overview.
Certification of applications and systems: TCSEC, ITSEC, Common Criteria.

Software Attacks - part 2

27 setembro 2016, 14:00 Miguel Filipe Leitão Pardal

Exploit C language buffer overflow vulnerabilities:

  • buffer overrun
  • shellcode injection
  • shellcode injection using environment variable
  • printf format string vulnerabilities

Buffer overflow vulnerabilities

27 setembro 2016, 12:30 Ricardo Chaves

C vulnerabilities: Stack smashing.
BSS/Heap attacks.
C vulnerabilities and prevention mechanisms.

Software Attacks

26 setembro 2016, 15:00 Miguel Filipe Leitão Pardal

Introduction to virtualization infrastructure.

XSS and SQL injection attacks.
Beginning of Buffer overflow attacks.

Buffer overflow vulnerabilities

26 setembro 2016, 12:00 Miguel Filipe Leitão Pardal

C vulnerabilities: Stack smashing.

BSS/Heap attacks.