Zipkin Where to go next? Zipkin Zipkin is a distributed tracing system. It helps gather timing data needed to troubleshoot latency problems in service architectures. Features ...
Introduction Malformed XML Documents More Time Required Applications Processing Malformed Data Malformed Document to Malformed Document Well-Formed Document to Well-Formed Docum...
Introduction Major risks Risk 1: Loss of control over changes to the client application Risk 2: Execution of arbitrary code on client systems Risk 3: Disclosure of sensitive inf...
Introduction Context Objective Recommendations Application Security Use flat Promise chains Set request size limits Do not block the event loop Perform input validation Perf...
Introduction Context Additional remarks Objective Proposition Sources of the prototype Introduction I nsecure D irect O bject R eference (called IDOR from here) occurs wh...
Introduction Rules RULE #0 - Keep Host and Docker up to date RULE #1 - Do not expose the Docker daemon socket (even to the containers) RULE #2 - Set a user RULE #3 - Limit capa...