Vulnerability Assessment of Office 365: The Good, The Bad & The Bounty Bucks
Date: 13th Oct – Sunday,14th Oct – MondayTime: 09:00-18:00Location: Training Rooms
This training introduces and details Office 365 through presentation, challenges and discussions around 150+ bounty award winning bugs. No pre-requisite in terms of knowledge about Office 365 is needed. At the end of the training, the participants will have a solid understanding of the Office 365 in general while SharePoint in particular and XSS vulnerability research in Office 365. The main objective of this training is to train participants so that they can find XSS bugs in Office 365’s umbrella applications easily. The technical details and the thought process leading up to this objective will be discussed. Please keep in mind that Microsoft follows Secure Development Life-cycle (SDL) along with internal and external pentests and audits and Office 365 is a security-hardened service. Last but not the least, after this training, participants will start looking at XSS in real world targets like a pro.