OWASP is organizing a meeting with talks, free pizza and drinks on 17th March 2016 in SpaceportX. The event will kick off at 18:00. Come along to enjoy an evening and discuss latest topics in computer security field.
During the evening we will see following presentation:
Turning over a new Leaf – How the world’s bestselling electric car, the Nissan Leaf can be accessed remotely to activate the climate control and spy on details of the driver’s journeys simply by knowing or guessing the VIN of the vehicle. This may seem like a harmless prank but could be used to void warranties or drain batteries remotely, with Nissan looking to add GPS tracking to the vehicles this issue could have become a whole lot worse.
Scott is a Pen Tester by day and runs several well-known security sites and blogs by night including report-uri.io, securityheaders.io and scotthelme.co.uk.
Abstract: Blind detection of path traversal-vulnerable file uploads - Presentation of an experimental web penetration testing technique, aiming at detection of path traversal issues in file upload implementations, with zero knowledge about the remote directory structure.
Speaker bio: Julian Horoszkiewicz, IT Security Consultant at Pentest Ltd, OSCP, open source and security enthusiast, recently focused on methodology