Sumários
Copy and Modification of Software
29 outubro 2018, 09:30 • Pedro Adão
Copy and Modification of Software: Illegal copy of software. Protection Schemes.
Format Strings' Lab
29 outubro 2018, 08:00 • Pedro Adão
Format Strings' Lab: Reading Arbitrary Values from Memory, Writing Values to Memory, Call Functions.
Input validation vulnerabilities and encoding
26 outubro 2018, 11:00 • Miguel Nuno Dias Alves Pupo Correia
Input validation vulnerabilities
– Trust and input
– Command injection
– Metadata and metacharacters
Input validation
– How? Where?
– Data validation strategies
– Canonical representation and char encodings – Decodings
Encoding
– Output encoding against XSS
– Encoding inside the application (SQL)
Buffer Overflows 2
26 outubro 2018, 09:30 • Rodrigo Miguel Corredoura Janota Rato
Buffer Overflow exercises (Part 2).
Protection in common operating systems
25 outubro 2018, 17:30 • Miguel Nuno Dias Alves Pupo Correia
- Resource protection
- CPU operation modes
- Memory protection
- Access control
- Access control in Unix, Windows
- MAC vs DAC