
With your cards on the table - White Box Application Pentests
This presentation discusses the relevance of white box pentests.
Topic
Education and trainingWebsecurity / VPN
When & Where
Wed, 10/26/2022, 13:45 - 14:00
Details
Format:
Management lecture
Session description
Over the last few years, the complexity of web applications has increased significantly.
Where dedicated fat client applications were used in the past, today "single page web applications" are often developed that communicate with the backend servers via REST APIs or websockets.
The presentation shows the advantages of a full disclosure of source code, infrastructure and architecture compared to a black or grey box pentest and how the testing methodology differs from a code review.