injections nosql - OSSIR

More documents

Recommendations

Info

INJECTIONS NOSQL Et les <strong>injections</strong> NoSQL • Exemple sur MongoDB • Requête d’authentification NoSQL: $res = $coll->findOne(array('$where' => "this.login == '$login' && this.password == '$password' ")); • Elément injecté: A' || 1==1 // www.ngmsecurity.com
INJECTIONS NOSQL Et les <strong>injections</strong> NoSQL • Exemple sur MongoDB • Requête d’authentification NoSQL: $res = $coll->findOne(array('$where' => "this.login == '$login' && this.password == '$password' ")); • Elément injecté: A' || 1==1 // • Requête finalement effectuée $res = $coll->findOne(array('$where' => "this.login == 'admin' && this.password == 'A' || 1==1 //' ")); www.ngmsecurity.com
Page 1 and 2: Les injections NoSQL JSSI 2012
Page 3 and 4: NOSQL Une multitude de technologie
Page 5 and 6: NOSQL Objectif • Proposer une al
Page 7 and 8: AGENDA NoSQL Attaques d’injectio
Page 9: INJECTIONS NOSQL Et les injections
Page 13 and 14: INJECTIONS NOSQL Cas particulier du
Page 15 and 16: INJECTIONS NOSQL Cas particulier du
Page 17 and 18: INJECTIONS NOSQL Injection NoSQL en
Page 19 and 20: INJECTIONS NOSQL Fonctions utiles p
Page 21 and 22: INJECTIONS NOSQL Démo www.ngmsecur
Page 27 and 28: INJECTIONS NOSQL Outil et applicati

injections nosql - OSSIR

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?