Abstract

A Demo on exploiting Remote/Local File Inclusion vulnerabilities present on non-php based web applications.

Remote File Include (RFI) is an attack technique that can be used to include files on a server hosting a vulnerable web application. The main motive of this technique is to execute code on the target server in hopes of compromising it.

Local File Include (LFI) is a similar technique which let's an attacker include files present on the vulnerable server itself. This technique can help the attacker read sensitive files present on the server, and can also lead to code execution.

What to expect:
Practical examples demonstrating the common ways to exploit these vulnerabilities.

What not to expect:
- A detailed theoretical session

Speaker

Faiz

I am a Freelance Cyber Security Consultant and Trainer.

You can talk to me about:
1) Penetration Testing
2) Cloud and Infrastructure Security
3) Privacy

Timing

Starts at Saturday June 17 2017, 12:15 PM. The sessions runs for 30 minutes.

Resources