TechWeekend Pune and Microsoft present a technical session web security on Saturday 20th August, 10am, at Sumant Moolgaokar Auditorium, MCCIA Trade Tower, ICC. This session will feature Rohit Srivastwa (of ClubHack) talking about some of the top web vulnerabilities, how they work, and how to prevent them, and Aditee Rele (of Microsoft) talking about the new security features in IE9.
Top Web Vulnerabilities – Rohit Srivastwa
This talk will cover 6 of the top 10 most exploited vulnerabilities on the web as reported by OWASP. Specifically:
- Cross-Site Scripting
- Information Leakage
- SQL Injection
- Local/Remote File Inclusion
- Unrestricted uploads
- Shell Injections
and best coding practices whereever possible.
The speaker Rohit Srivastwa is one of Pune’s most well know security evangelists. He has an expertise in cyber crime investigation and IT infrastructure management. Rohit is actively involved advising several military agencies, law enforcement personnel, media, corporate and Government bodies in these fields.
Rohit Srivastwa is also the founder of ClubHack, a member driven community to spread the security awareness. ClubHack organizes an international hacker convention in Pune every December.
For more see Rohit’s website
Security Features in IE9 – Aditee Rele
The latest version of Microsoft’s browser contains a lot of technologies focused on making the browser very safe from malware and phising attacks on the internet. It uses a new mechanism called layered protection against malware and a bunch of memory and exception handler protections to ensure that the most common ways of exploiting security holes are automatically plugged. To prevent phishing, it uses a SmartScreen filter to block bad URLs, and an application reputation mechanism to detect untrustworthy executables, providing what they claim is 100% social engineering blocking.
The speaker Aditee Rele works in the Developer and Platform Evangelism (DPE) Group at Microsoft Corporation, India. She focuses on addressing architectural challenges in the enterprise and web space and has first-hand exposure to large implementations on various platforms across Microsoft Technology Suite.
Fees and Registration
This event is free and open for anybody to attend. No registration required
The event starts at 10am, in the Sumant Moolgaonkar Auditorium, Ground Floor, Wing A, ICC Trade Center, SB Road. Please come 10 minutes early since security at the venue takes a little time, and we are planning on starting the event on time.