Profilepic

Abstract

Pentesting WebSockets:

  1. WebSocket vs. HTTP
  2. What is a WebSocket?
  3. How WebSockets Work?
  4. WebSocket Security Concerns
  5. How to Test?
  6. Demo-1: Fuzzing websocket server requests using ZAP tool (https://youtu.be/3bXkhtg9p-U)
  7. Demo-2: Cross-Site WebSocket Hijacking (https://youtu.be/bRPpIdvSsJ4)

Speaker

Riddhi Shree

Inquisitive by nature, I tend to drift towards anything that seems difficult, yet, interesting. I have interest in a variety of areas including (but not limited to) playing guitar, painting/sketching, playing chess, dribbling the basketball, and, of course, making attempts to explore different aspects of the most powerful innovation of all times: a Computer.

Timing

Starts at Saturday July 22 2017, 11:50 AM. The sessions runs for about 1 hour.

Resources