January Meetup - Injection Attacks: Builder/Breaker Style

We are kicking off the new year by going back to basics. We will be meeting at the usual location in Reston, and good food + drinks will be provided as always.

This month, we are featuring a Builders vs. Breakers style of presentation. We will have two presenters, each presenting from their own perspective on Injection attacks. This includes SQL Injection, LDAP Injection, and other common injection types.

Our Builder presentation focuses on how to build applications that can withstand injection attacks and live to tell about it. The goal is to prevent them from being introduced into real-world applications in the first place.

Our Breaker presentation will be filled with real-world examples of how attackers and pentesters exploit injection vectors. Where applicable, examples will be shown of how to circumvent commonly weak controls which developers are often unaware of.

Bios:

Mike McBryde is a web app developer and security analyst. Formerly from San Antonio, he worked for seven years at Denim Group, a web application development and security consultancy, ending up as one of their Lead Application Security Consultants. He now works in the DC area, building out an application security program for The Advisory Board Company.

Jonn Callahan studied Computer Science at James Madison University and graduated in 2012. He currently works for CGI Federal on a large government contract with a team in charge of securing web applications.