Abstract

Set Up & Exploiting OAuth 2.0 Protocol

◦Understanding OAuth 2.0 authentication protocol
◦Exploitation Methods
◦Exploit Demo: Forcing a malicious app installation
◦Miscellaneous Attacks: Directory traversal, Domain tricks, etc.

Speaker has developed a sample REST API handler using express framework which can be downloaded through his GitHub repository. Also the attendees must download Postman for testing the API and a Web-Proxy(Burp/ZAP). Please feel free to use below link to explore the handler during the session.

Link to GitHub Rep: https://github.com/shahenshah99/api-handler

Speaker

Mihir Shah

Timing

Starts at Saturday October 06 2018, 09:30 AM. The sessions runs for about 4 hours.

Resources