26 Feb '13, 1pm

#HITB2013AMS HITB LAB: Attacking Ruby on Rails Applications - Joernchen (Phenoelit) - cc @joernchen

#HITB2013AMS HITB LAB: Attacking Ruby on Rails Applications - Joernchen (Phenoelit) - cc @joernchen

HITB LAB TITLE: Attacking Ruby on Rails Applications HITB LAB ABSTRACT: Ruby on Rails (RoR) is an open source web application framework based on the Ruby programming language. RoR has gained much attention in the recent past due to several severe flaws within the framework itself. In this HITB Lab session we will take a closer look at attacking Ruby on Rails applications. Starting with a basic overview of the Rails framework and its security mechanisms, we continue with common developer pitfalls and a look at both general web application flaws as well as RoR specific issues. Along with this, some interesting security aspects of the framework itself will be elaborated including the recent Remote Code Execution bugs as well as some extensions of these flaws. All in all, attendees can expect a code centric walk-through of Ruby on Rails with a strong focus on the security mech...

Full article: http://conference.hitb.org/hitbsecconf2013ams/joernchen/

Tweets

Installing Rails -- Both 3.2 and 4.0 with Ruby 2.0

rubyflow.com 26 Feb '13, 10am

Installing Rails -- Both 3.2 and 4.0 with Ruby 2.0 Posted by DanielKehoe on February 26, 2013 — 0 comments Updated Install...

#jobs #java RUBY ON RAILS: Salary/Rate: Upto £1...

technojobs.co.uk 24 Feb '13, 3am

My client is looking for a developer with the following experience * Around 4-6+ years of work experience. * Around 2-3+ y...

Riding Rails: Rails 4.0: Beta 1 released!

weblog.rubyonrails.org 26 Feb '13, 12am

Hot on the heels of the first production version of Ruby 2.0 comes the first beta version of Rails 4.0. The two form a gre...

Ruby on Rails Developer (Lifetime Oppuntinity) ...

freelancer.com 25 Feb '13, 6pm

Project Description: We are a financial services company looking to hire a developer to create an application that helps o...

#RubyOnRails Proofreading my Ruby on Rails proj...

freelancer.com 24 Feb '13, 11pm

I was in an Independent Study for a class at my University last semester to learn Ruby on Rails. I picked up a ton of grea...

Maintenance policy for Ruby on Rails

weblog.rubyonrails.org 25 Feb '13, 2pm

Since the most recent patch releases there has been some confusion about what versions of Ruby on Rails are currently supp...