Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror

Submission + - Capturing The Flag, SQLi-Style (darkreading.com)

CowboyRobot writes: Penetration tester and long-time security professional Sumit "Sid" Siddharth has developed a real-world SQL injection sandbox simulator, and invites the public for a capture the flag event later this month. "The only way you can understand the true impact of vulnerabilities is by practicing exploitation. Even vulnerability identification goes hand-in-hand with exploitation," says Siddharth. "Sometimes identifying the vulnerability is really difficult, and it's only when you know advanced exploitation techniques that you can do so. "We've also put together some really nice examples where identifying the vulnerability is really difficult, and we've asked people to find the needle in the haystack because that's how websites get compromised at the end of the day,"
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Capturing The Flag, SQLi-Style

Comments Filter:

"Life is a garment we continuously alter, but which never seems to fit." -- David McCord

Working...