AppSec Arsenal: Modern Exploitation Techniques & Advanced Defense Strategies
In this session, we investigate how applications are the beating heart of the digital realm, and as hackers, we know just how to make them skip a beat.
Summary:
Dive into the cutting edge of application security at DEFCON 31 as expert practitioners reveal sophisticated exploitation techniques and defensive strategies. This session exposes hidden vulnerabilities in modern applications while demonstrating how attackers think, operate, and exploit code-level weaknesses. Learn advanced testing methodologies, discover emerging attack vectors, and master the art of building robust application defenses.
Key Takeaways:
- Advanced application exploitation techniques
- Modern framework vulnerability patterns
- API security testing methodologies
- Authentication bypass strategies
- Business logic flaw discovery
- Supply chain attack vectors
- Secure coding best practices
- Defense-in-depth strategies
- Real-world case studies and demonstrations
- Tool selection and optimization
Who Should Watch:
- Application Security Engineers
- Web Developers
- Security Researchers
- Penetration Testers
- Software Architects
- DevSecOps Teams
- Security Program Managers
- Code Reviewers
- Bug Bounty Hunters
Ideal for both offensive security professionals seeking to enhance their application testing capabilities and developers looking to build more secure applications through understanding attacker methodologies.