[ mainpage :: register :: conference :: training :: the venue ]
[ capture the flag (CTF) :: hitb cinema :: lock picking village :: zone-h/hitb hacking challenge :: bzflag ]
[ call for papers (CFP) :: conference agenda :: sponsors :: press/media :: forum ]
[ conference kit (PDF) :: past conferences :: contact us ]

Conference Materials: http://conference.hitb.org/hitbsecconf2007kl/materials/

Official Photos: http://photos.hitb.org

Frank Yuan Fan (Founder and CTO of DBAPPSecurity)

Filed under: Main Page — Administrator @ 2:59 pm

Presentation Title: Advanced Web Application and Database Threat Analysis with MatriXay
Presentation Details:

Web application vulnerability and threats has been rated as #1 issue in 2006, while you may looking at defense strategy, maybe it is good to look at a few real case on how a site being hacked and owned, while almost unnoticeable.

With this presentation Frank will have analysis on top 3 Web threats including SQL injection and Cross site scripting, as well as latest dangrous ANI vulnerability being used combined with Web application threats. Along with this, Frank will also show how quickly the site will be hacked using MatriXay, and the architecture, and the backend database security threats.

About Frank

Frank Yuan Fan (FF), CISSP, CISA, GCIH, GCIA is President and CTO of DBAPPSecurity Inc. He is a frequent speaker in many security conferences including US Blackhat and Defcon. His specialty spans from network layer to application/database layer security and compliance. He has been involved in this area for the last 10 years and possesses hands on “ethical hacking” experience with different web application and databases. He holds Master of Science (Computer engineering) degree from San Jose State University .



Event Organizer


Hack In The Box (M) Sdn. Bhd.

Supported & Endorsed By


Malaysian Communications and Multimedia Commission (MCMC)


Malaysian Administrative Modernisation & Management Planning Unit

Platinum Sponsors


Microsoft Corporation

Gold Sponsors


SCANIT ME LLC

Official Airline Partner


Internet Bandwidth Sponsor


Global Transit

CTF Sponsor


Scan Associates

CTF Prize Sponsor


Scan Associates

Sponsor for Zone-H/HITB Hacking Challenge


Ascendsys

HITB Cinema Sponsor


Avenuz Sdn. Bhd.

Official Creation Station


The Womb.com

Our Speakers are Supported By


F-Secure Corporation


Arbor Networks


Mediaservice.net


Bellua Asia Pacific


ERNW GmbH


Mozilla Corporation


Mu Security

Supporting Media:

Virus Bulletin

Virus Bulletin (VB)

InfoSec News

(ISN) InfoSec News

InfoSec News

XAKEP (Russia)

Insecure Magazine

PHRACK Magazine

Hakin9 Magazine

Supporting Organizations


Chaos Computer Club


ISECOM - Insititue for Security and Open Methodologies


ISACA


IT Underground


X-Focus China

Zone-H Defacement Mirror


Xatrix Security


Special Interest Group in Security & Information InteGrity Singapore


Syscan