SECFORCE takes part on OWASP London presenting “Abusing Windows sockets for fun and profit”

SECFORCE presents its latest research on the London OWASP meeting  talking about the misuse of Windows sockets for advanced attacking scenarios. The source code to recreate the attack has been also released on SECFORCE website.

Find below the introduction of the talk:

PHP (PHP: Hypertext Preprocessor) is a server-side HTML embedded scripting language which provides web developers with a full suite of tools for building dynamic websites. PHP socket library implements a low-level interface to the socket communication functions based on the popular BSD sockets. This presentation will focus on the use of PHP socket library from an offensive point of view, demonstrating interesting and creative vectors of attack.

You can download the paper from our Presentations page.

Date: 4 April 2008