Ruxmon Melbourne Meeting - September 2011

Starts: Friday 30 September 2011, 12:00AM

Finishes: Friday 30 September 2011, 12:00AM

Date: Friday 30 September 2011
Time: From 6:00pm

Venue: RMIT, City Campus: Building 8, Level 9, Room 41

RMIT Building 8 entrance is off Swanston Street (just past Swanston and La Trobe). Please take the lift to Level 9 and make your way to Room 41. Ruxmon will have directions posted up in the building.

Agenda:

• MongoDB and Injections - Louis

This talk is going to present injection on the NoSQL database MongoDB. It will compare how NoSQL injections are different from SQL injections and how an attacker can bypass authentication or retrieve information.

• Insecurities of HTML5 Client Side Storage - Luke Jahnke

This talk is on the recently expanded attack surface of modern browsers due to HTML5. The talk will have a strong focus on the possible vulnerabilities introduced by the various objects added to EMCAScript, more commonly called JavaScript, that provides methods of client-side data storage.

Registration: Ruxmon advise no registration required for this Melbourne meeting.

Further information on Ruxmon: http://www.ruxcon.org.au/ruxmon/

 

Update on Friday 30 September at 12:00 noon:

• Android Security and Getting your Mum's Number - Slash - POSTPONED
  

This talk introduces Android, security models and some real world vulnerabilities then concludes with an overview on how to assess Android devices and applications.  Sash will (hopefully) provide demo's using the emulator and the eclipse SDK such that the audience will become familiar with identifying low hanging fruit that can be used to compromise application data, and perhaps gain system execution.

Due to some unforeseen issues, this talk cannot be given at this meeting on Friday 30 September 2011, and has been replaced with Louis' talk on MongoDB and Injections as listed above.