Rener Alberto Farias Silva
Senior Security Testing Engineer @ EPAM Poland
Topic: "SQL Injection: Pwning a windows box from scratch"
- Information Gathering: Using SQL Injection to obtain more information about the target system.
- Get unauthorized access: Taking the control of the web application.
- Take the full control of web server: How the web server and his network could be compromised.
- Bonus: Injecting a malicious binary in the system bypassing the antivirus protection.