Martin Dessauer is an active member of the security and hacking scene in Germany. He works for Sogeti as a penetration tester since three years and tries to approach penetration testing projects from a perspective which is as close to an attacker’s perspective as possible. Of course, this doesn’t mean that he is sorely focusing on Black Box penetration tests.
On his way to better understanding attackers, he has taken several paths: on the one hand, he sets up web services on public servers that observe attackers while they are trying to hack their way into the web service – this process is known as “honeypotting”. On the other hand, he uses fuzzing to cover a high level of future attacks.
As he can code in multiple programming languages since over a decade, he has a good understanding of how applications are built and what typical flaws hide in them. This gives him the ability to understand both, the programmer’s view and the attacker’s view.
07. Juni 2019 - 14:45-15:20
GTD 6.4 - Track+