phpBB Academy at StarTrekGuide

[Techie-Micheal]

http://www.vimeo.com/6952783

[Highway of Life]

Wonderful.
- First post edited.

[comkid]

Does this show you how to fix those vulnerabilities pointed out?

Even if it doesn't I'm still watching it

[Obsidian]

No, it does not. I believe that may be covered in later videos, but best to know from Techie-Micheal himself.

[Highway of Life]

Does this show you how to fix those vulnerabilities pointed out?

Even if it doesn't I'm still watching it

The first step is always becoming aware of these vulnerabilities. Once you are aware of them and how they work, you can better diagnose what you should be doing to prevent such vulnerabilities.

[wired076]

I have just watched this video and it was very interesting and informative.

I would like to see some more videos of this nature not just of showing exploits but also how to fix them and how to protect yourself,etc.

I think that this is something that should be covered more.

Thanks Techie-Micheal keep up the good work!

[Obsidian]

I have just watched this video and it was very interesting and informative.

I would like to see some more videos of this nature not just of showing exploits but also how to fix them and how to protect yourself,etc.

I think that this is something that should be covered more.

Thanks Techie-Micheal keep up the good work!

I think he was going for the shock-and-awe effect with this video, to make developers aware of the implications an XSS vulnerability may have. Before you can get people to listen to you, you need to have their attention -- this certainly worked for that purpose.

I'm really looking forward to more videos though. Bring it on, TM!

[Techie-Micheal]

Does this show you how to fix those vulnerabilities pointed out?

Even if it doesn't I'm still watching it

The first step is always becoming aware of these vulnerabilities. Once you are aware of them and how they work, you can better diagnose what you should be doing to prevent such vulnerabilities.

Exactly.

I have just watched this video and it was very interesting and informative.

I would like to see some more videos of this nature not just of showing exploits but also how to fix them and how to protect yourself,etc.

I think that this is something that should be covered more.

Thanks Techie-Micheal keep up the good work!

I think he was going for the shock-and-awe effect with this video, to make developers aware of the implications an XSS vulnerability may have. Before you can get people to listen to you, you need to have their attention -- this certainly worked for that purpose.

I'm really looking forward to more videos though. Bring it on, TM!

Exactly what I was after. Too often I've either reported or seen reports to developers of XSS or SQL injection or others like weak PRNG, and they just shrug it off, like it isn't a big deal. Well, it is. The next video will hopefully be SQL injection and I've got some surprises in mind with that. Here's a little teaser to whet your appetite: I can go from SQL injection to running operating system commands on the server. I'll show you how that works once I get settled in and get internet access at my new apartment. Once we understand the severity of these vulnerabilities, we can start formulating our own plan of attack to secure our applications.

[comkid]

Great, I want to see what the exploit is...

[Obsidian]

Exactly what I was after. Too often I've either reported or seen reports to developers of XSS or SQL injection or others like weak PRNG, and they just shrug it off, like it isn't a big deal. Well, it is. The next video will hopefully be SQL injection and I've got some surprises in mind with that. Here's a little teaser to whet your appetite: I can go from SQL injection to running operating system commands on the server. I'll show you how that works once I get settled in and get internet access at my new apartment. Once we understand the severity of these vulnerabilities, we can start formulating our own plan of attack to secure our applications.

Oh yay! Another interesting video to watch.

Just be sure to upload the next one too, if you please.