))
Top 10 Web Hacking Techniques of 2024 - James Kettle - ASW #318
Manage episode 467238661 series 2794676
Contenido proporcionado por Security Weekly Productions. Todo el contenido del podcast, incluidos episodios, gráficos y descripciones de podcast, lo carga y proporciona directamente Security Weekly Productions o su socio de plataforma de podcast. Si cree que alguien está utilizando su trabajo protegido por derechos de autor sin su permiso, puede seguir el proceso descrito aquí https://es.player.fm/legal.
We're getting close to two full decades of celebrating web hacking techniques. James Kettle shares which was his favorite, why the list is important to the web hacking community, and what inspires the kind of research that makes it onto the list. We discuss why we keep seeing eternal flaws like XSS and SQL injection making these lists year after year and how clever research is still finding new attack surfaces in old technologies. But there's a lot of new web technology still to be examined, from HTTP/2 and HTTP/3 to WebAssembly.
Segment Resources:
- Top 10, 2024: https://portswigger.net/research/top-10-web-hacking-techniques-of-2024
- Full nomination list: https://portswigger.net/research/top-10-web-hacking-techniques-of-2024-nominations-open
- Project overview: https://portswigger.net/research/top-10-web-hacking-techniques
Show Notes: https://securityweekly.com/asw-318
654 episodios
Compartir
