-
Tod Beardsley 3.9
Description:
We all know that Ruby is a great prototyping language. It's easy to pick up and quick to turn out proof of concept code. This facet of the language makes it ideal for turning out exploit code - programs designed to take advantage of security vulnerabilities.
This talk explores the infosec culture that has grown up and around Ruby and how it is reflected in the language. There will be plenty of live demos of weaponized Ruby, and participants will learn how to build up their own arsenal of Ruby-based attack software.
Comments on this Talk
There was more content here than time to deliver it in, but every minute was showing off something cool. The talk was at the perfect level for the audience - I imagine, if delivered to a purely netsec audience, it would have been considered a bit too easy-level. For a crowd of general Rubyists, it was exactly on note.
todb,
11 Aug 07:09 PM
Hey my goofy slides are here:
http://t.co/IKO5nY5a
Sadly, I don't think LSRC is recording this year, so unless you saw it live, you missed the 1.0 version of this talk. I'll put some time on getting a 1.2 version together tho, so it'll be bigger and better next time.
Thanks for coming!
shuckins,
13 Aug 01:41 PM
A helpful and fast-paced overview of not only some of the real and prevalent risks that developers need to be aware of but also the ease with which current tools can exploit those risks. Fun tips and tools for increasing networking and security knowledge through a variety of approaches.
Great delivery. Extensive knowledge of ruby security packages. I learned a ton that I didn't know before. It is sometimes hard to see the right content on screens of text flying by.
Great presentation overall.