Completed
Intro
Class Central Classrooms beta
YouTube playlists curated by Class Central.
Classroom Contents
Another Brick Off the Wall - Deconstructing Web Application Firewalls Using Automata Learning
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Overview
- 3 Code Injection Attacks
- 4 Code Injection is a Parsing Problem
- 5 Web Application Firewalls
- 6 WAFs Internals
- 7 WAF Rulesets
- 8 Why Bypasses Exist
- 9 Our Goal
- 10 Context Free Grammars
- 11 Attack of the Grammars
- 12 Why should I care?
- 13 However...
- 14 Learning to Parse
- 15 Learning Automata
- 16 Learning Model
- 17 Learning DFAs
- 18 Equivalence Query
- 19 Symbolic Finite Automata
- 20 Bootstrapping Automata Learning
- 21 Grammar Oriented Filter Auditing
- 22 SFADiff XSS Bypass
- 23 Generating Program Fingerprints
- 24 Modular Design
- 25 Core Modules
- 26 Built-in Query Handlers
- 27 HTTP Request Handler
- 28 Browser Parser Handler
- 29 Browser Filter Handler
- 30 Using GOFA module and HTTP Handler
- 31 Conclusions
- 32 black hat
