JSConf | Picking the Low-Hanging Fruit Easy Pentest Wins by Marcus Bointon @jsconf_ | Uploaded 2 months ago | Updated 11 hours ago
Penetration tests are a critical step in securing web services, but often much of their effort is wasted reporting simple things that can easily be avoided in advance. We will look at security issues that are often found in pentests at all levels in the deployment stack, concentrating on those that can be resolved quickly and easily in one place (in any language), and show how to fix them, freeing up expensive pentester resources for tackling more complex challenges.
https://jsconfbp.com/speakers/marcus-bointon
I'm the maintainer of PHPMailer, possibly the most popular code for sending email in the world, a top-10 PHP project on GitHub (with over 9,900 forks and 21,000 stars, and 56 million downloads on packagist), and used in WordPress, Drupal, Yii, SugarCRM and many other projects. I have ansnwered over 1,000 questions about PHPMailer and email on StackOverflow (where I'm also the top answerer for the SPF and DKIM tags), so I'm very familiar with the kind of problems beginners in particular run into. PHPMailer is also at the heart of the privacy-first email marketing company I run, smartmessages.net.
Penetration tests are a critical step in securing web services, but often much of their effort is wasted reporting simple things that can easily be avoided in advance. We will look at security issues that are often found in pentests at all levels in the deployment stack, concentrating on those that can be resolved quickly and easily in one place (in any language), and show how to fix them, freeing up expensive pentester resources for tackling more complex challenges.
https://jsconfbp.com/speakers/marcus-bointon
I'm the maintainer of PHPMailer, possibly the most popular code for sending email in the world, a top-10 PHP project on GitHub (with over 9,900 forks and 21,000 stars, and 56 million downloads on packagist), and used in WordPress, Drupal, Yii, SugarCRM and many other projects. I have ansnwered over 1,000 questions about PHPMailer and email on StackOverflow (where I'm also the top answerer for the SPF and DKIM tags), so I'm very familiar with the kind of problems beginners in particular run into. PHPMailer is also at the heart of the privacy-first email marketing company I run, smartmessages.net.
![Hacking Web Performance - Maximiliano Firtman [Spanish language]](https://i.ytimg.com/vi/dyABQXGgB7Y/hqdefault.jpg "Hacking Web Performance - Maximiliano Firtman [Spanish language]
English translated audio https://youtu.be/ing6mc3Yuhc
After we understand how important Web Performance is and weve applied basic techniques, whats next? In this session, we will cover extreme techniques that will blow your mind about Web Performance. New compression algorithms? new image formats? Client-Hints? HTTP/3? Lets hack Web Performance.")
