DEF CON Forum Site Header Art

Announcement

Collapse
No announcement yet.

TaintedLove

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • TaintedLove

    Friday from 12:00 – 13:50 in Sunset 6 at Planet Hollywood
    Audience: AppSec Benoit Côté-Jodoin

    TaintedLove is a dynamic security analysis tool for Ruby. It leverages Ruby's object tainting and monkey patching features to identify potentially vulnerable code paths at runtime. TaintedLove is library agnostic and provides a simple framework to extend the detection of unsafe method usage and user input tracking.

    https://github.com/shopify/tainted_love

    Benoit Côté-Jodoin
    Benoit is an Application Security Engineer at Shopify having a strong interest in web application security and vulnerability research. Sometimes an active CTF player, he has taken part in multiple competitions with the team DCIETS/NorthernCoalition.
Working...
X