Sunday, May 10, 2015

2015-021: 24 Deadly Sins: Command injection


We continue our journey on the 24 Deadly Programming Sins. If you listened to last week's podcast, we introduced the book we were using as a study tool:

http://www.amazon.com/Deadly-Sins-Software-Security-Programming/dp/0071626751

This week is on command injection. We first discussed code injection as part of our OWASP Top 10 for 2013, but you'll be surprised just how easy it is for devs to allow it to happen in compiled code as well.


Here is a new episode of Brakeing Down Security!

No comments: