Google Hacking Class

04 May 2010
May 4, 2010

Google CodeHey, did you know that there’s a Google Code University? I didn’t until today when I saw the “Do Know Evil” post at the Google Online Security blog (a good blog to follow, btw).

They released a “codelab” today on Web Application Exploits and Defenses. Fun stuff and if you’ve been looking for a good primer it looks like a good hands-on way to learn.

Jarlsberg logoWe’re releasing this codelab, entitled “Web Application Exploits and Defenses,” today in coordination with Google Code University and Google Labs to help software developers better recognize, fix, and avoid similar flaws in their own applications. The codelab is built around Jarlsberg, a small yet full-featured microblogging application designed to contain lots of security bugs.

I’ve been through just the first few pages of the lab and like how it is laid out. Glancing at the outline shows that it covers a lot of territory: XSS,  privilege escalation, cookie manipulation, XSRF, XSSI, DOS, path traversal, codex execution and much more.

Tags: , , ,
0 replies

Leave a Reply

Want to join the discussion?
Feel free to contribute!

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>