https://wiki.owasp.org/index.php?action=history&feed=atom&title=AppSecEU08_PHPIDS_Monitoring_attack_surface_activityAppSecEU08 PHPIDS Monitoring attack surface activity - Revision history2026-05-07T13:20:28ZRevision history for this page on the wikiMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=AppSecEU08_PHPIDS_Monitoring_attack_surface_activity&diff=28722&oldid=prevX00mario: /* The talk */2008-05-01T17:55:58Z<p><span dir="auto"><span class="autocomment">The talk</span></span></p>
<table class="diff diff-contentalign-left" data-mw="interface">
<col class='diff-marker' />
<col class='diff-content' />
<col class='diff-marker' />
<col class='diff-content' />
<tr style='vertical-align: top;' lang='en'>
<td colspan='2' style="background-color: white; color:black; text-align: center;">← Older revision</td>
<td colspan='2' style="background-color: white; color:black; text-align: center;">Revision as of 17:55, 1 May 2008</td>
</tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l3" >Line 3:</td>
<td colspan="2" class="diff-lineno">Line 3:</td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>The presentation will be about the PHPIDS and how this system might be capable solving several security dilemmas of developers and site owners. Such as:</div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>The presentation will be about the PHPIDS and how this system might be capable solving several security dilemmas of developers and site owners. Such as:</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"></td></tr>
<tr><td class='diff-marker'>−</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div><del class="diffchange diffchange-inline"> </del>* Complexity of the webapp security topic vs. time pressure</div></td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>* Complexity of the webapp security topic vs. time pressure</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div><del class="diffchange diffchange-inline"> </del>* Diversity of attack patterns and techniques</div></td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>* Diversity of attack patterns and techniques</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div><del class="diffchange diffchange-inline"> </del>* Costs for nowadays security solutions</div></td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>* Costs for nowadays security solutions</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div><del class="diffchange diffchange-inline"> </del>* Obfuscated exploits vs. Blacklisting</div></td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>* Obfuscated exploits vs. Blacklisting</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div><del class="diffchange diffchange-inline"> </del>* Techniques to detect attacks based on <del class="diffchange diffchange-inline">alogrithms</del></div></td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>* Techniques to detect attacks based on <ins class="diffchange diffchange-inline">algorithms</ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline">* Massive usage of regular expressions vs. performance</ins></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"></td></tr>
<tr><td class='diff-marker'>−</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div>The talk is potentially interesting for either security professionals, developers and project managers since the meaning and whereabouts of the PHPIDS will be introduced - as well as some regular expression black <del class="diffchange diffchange-inline">magik </del>the system uses.  </div></td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>The talk is potentially interesting for either security professionals, developers and project managers since the meaning and whereabouts of the PHPIDS will be introduced - as well as some regular expression black <ins class="diffchange diffchange-inline">magic </ins>the system uses<ins class="diffchange diffchange-inline">. </ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div> </div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline">An important part of the presentation will be about possibilities to detect attacks without blacklists or other dictionary based techniques but by the plain buildup of the string</ins>.</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>The presentation is based on a white-paper about the PHPIDS - which can be found here [http://php-ids.org/2008/02/17/phpids-white-paper-published/]</div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>The presentation is based on a white-paper about the PHPIDS - which can be found here [http://php-ids.org/2008/02/17/phpids-white-paper-published/]</div></td></tr>
</table>X00mariohttps://wiki.owasp.org/index.php?title=AppSecEU08_PHPIDS_Monitoring_attack_surface_activity&diff=28721&oldid=prevX00mario: New page: == The talk == The presentation will be about the PHPIDS and how this system might be capable solving several security dilemmas of developers and site owners. Such as: * Complexity of t...2008-05-01T17:01:46Z<p>New page: == The talk == The presentation will be about the PHPIDS and how this system might be capable solving several security dilemmas of developers and site owners. Such as: * Complexity of t...</p>
<p><b>New page</b></p><div>== The talk ==<br />
<br />
The presentation will be about the PHPIDS and how this system might be capable solving several security dilemmas of developers and site owners. Such as:<br />
<br />
* Complexity of the webapp security topic vs. time pressure<br />
* Diversity of attack patterns and techniques<br />
* Costs for nowadays security solutions<br />
* Obfuscated exploits vs. Blacklisting<br />
* Techniques to detect attacks based on alogrithms<br />
<br />
The talk is potentially interesting for either security professionals, developers and project managers since the meaning and whereabouts of the PHPIDS will be introduced - as well as some regular expression black magik the system uses. <br />
<br />
The presentation is based on a white-paper about the PHPIDS - which can be found here [http://php-ids.org/2008/02/17/phpids-white-paper-published/]<br />
<br />
== The speaker ==<br />
<br />
Mario Heiderich is a cologne based developer and CSO right now working for the performance marketing company ormigo.com [https://ormigo.com/]. He is active in several security related groups and organizations such as the PHPIDS Team [http://php-ids.org/contact/], GNUCITIZEN [http://gnucitizen.org/] and several others. Please visit his website to receive more information about Mario [http://mario.heideri.ch/].</div>X00mario