Tale of Forgotten disclosure and lesson's learned.
This presentation takes you to a tour of how not to handle vulnerability disclosures and how not to add a third party library in your system without keeping a track on the upstream.
The presentation is visual version of blog post A story of forgotten disclosure and DOM XSS
Anant Shrivastava is a Information Security Consultant.
He specialize in Web Application Security, and Mobile Security.
He has been Speaker / Trainer at various conferences like
- BlackHat USA - 2015, Europe - 2015
- RuxCon 2015
- Nullcon 2012,2015
- C0c0n 2011,2012,2013,2014,2015
- Rootconf 2014
- Clubhack 2011
- G0s 2013
He holds various certifications like
- SANS GWAPT
He is the project Lead for
- AndroidTamer : Live Android Testing Environment and
- Codevigilant Project : Vulnerability Identification and disclosure program for OpenSource Projects
Starts at Saturday May 16 2015, 11:10 AM. The sessions runs for about 1 hour.