Thu, 23 May 2013
Kevin Johnson and James Jardine kick off the topic of attacking the web by looking at what web penetration testing is and what both sides of the test need to think about. They discuss the need for the client to understand why they are testing, and what they are testing. It then moves into discussing scoping techniques and some common gotchas. A quick discussion on testing methodology, and then a quick segment on SQLMap and how it works.