RVAsec 2019 has ended
Back To Schedule
Thursday, May 23 • 11:10am - 12:00pm
Introduction to CSRF

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
An introduction to Cross Site Request Forgery, how to exploit it, and prevent it.

The talk will begin with an introduction to Cross Site Request Forgery, defining what it is, how to exploit, how to prevent it.  Live demonstrations (if the demo gods cooperate) will be used during the presentation.  The talk concludes with an example of using Flash to bypass the mistaken protections offered by Cross Origin Resource Sharing.

avatar for Aaron Bishop

Aaron Bishop

Principal Penetration Tester, SecurityMetrics, Inc.
bISHop has been in the security realm for over 10 years, focused on penetration testing for 6 years.  If bISHop is not at a computer, he can often be found in the mountains with his dog.

Thursday May 23, 2019 11:10am - 12:00pm EDT
Theatre, 2nd Floor