Security team: Difference between revisions

From ICO wiki
Jump to navigationJump to search
Ssaarm (talk | contribs)
Ssaarm (talk | contribs)
Line 36: Line 36:
== 3. päev ==
== 3. päev ==


=== Alo tegevus ===
=== Urmo tegevus ===
=== Taavi tegevus ===
=== Matise tegevus ===
=== Sanderi tegevus ===


== 4. päev ==
== 4. päev ==

Revision as of 15:42, 27 March 2012

1. päev

https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project

   A1: Injection - Urmo
   A2: Cross-Site Scripting (XSS) - Alo
   A3: Broken Authentication and Session Management - Sander
   A4: Insecure Direct Object References - Alo
   A5: Cross-Site Request Forgery (CSRF) - Taavi
   A6: Security Misconfiguration - Matis
   A7: Insecure Cryptographic Storage - Matis
   A8: Failure to Restrict URL Access - Urmo
   A9: Insufficient Transport Layer Protection - Taavi
   A10: Unvalidated Redirects and Forwards - Sander

2. päev

Backtrack 5 R2 - Taavi, parimate tööriistade ja meetodite uurimine et leida turvanõrkusi.

Alo tegevus

Urmo tegevus

Kasutan BackTrack 5 R2 64bit Gnome ja Samurai CD 0.9.9

Taavi tegevus

Matise tegevus

Sanderi tegevus

3. päev

Alo tegevus

Urmo tegevus

Taavi tegevus

Matise tegevus

Sanderi tegevus

4. päev

Tegijad

Alo Konno
Urmo Lihten
Taavi Podžuks
Matis Alliksoo
Sander Saarm