[ mainpage :: register :: conference :: training :: the venue ]
[ capture the flag (CTF) :: hitb cinema :: lock picking village :: zone-h/hitb hacking challenge :: bzflag ]
[ call for papers (CFP) :: conference agenda :: sponsors :: press/media :: forum ]
[ conference kit (PDF) :: past conferences :: contact us ]

Conference Materials: http://conference.hitb.org/hitbsecconf2007kl/materials/

Official Photos: http://photos.hitb.org

Frank Yuan Fan (Founder and CTO of DBAPPSecurity)

Filed under: Main Page — Administrator @ 2:59 pm

Presentation Title: Advanced Web Application and Database Threat Analysis with MatriXay
Presentation Details:

Web application vulnerability and threats has been rated as #1 issue in 2006, while you may looking at defense strategy, maybe it is good to look at a few real case on how a site being hacked and owned, while almost unnoticeable.

With this presentation Frank will have analysis on top 3 Web threats including SQL injection and Cross site scripting, as well as latest dangrous ANI vulnerability being used combined with Web application threats. Along with this, Frank will also show how quickly the site will be hacked using MatriXay, and the architecture, and the backend database security threats.

About Frank

Frank Yuan Fan (FF), CISSP, CISA, GCIH, GCIA is President and CTO of DBAPPSecurity Inc. He is a frequent speaker in many security conferences including US Blackhat and Defcon. His specialty spans from network layer to application/database layer security and compliance. He has been involved in this area for the last 10 years and possesses hands on “ethical hacking” experience with different web application and databases. He holds Master of Science (Computer engineering) degree from San Jose State University .

Event Organizer

Hack In The Box (M) Sdn. Bhd.

Supported & Endorsed By

Malaysian Communications and Multimedia Commission (MCMC)

Malaysian Administrative Modernisation & Management Planning Unit

Platinum Sponsors

Microsoft Corporation

Gold Sponsors


Official Airline Partner

Internet Bandwidth Sponsor

Global Transit

CTF Sponsor

Scan Associates

CTF Prize Sponsor

Scan Associates

Sponsor for Zone-H/HITB Hacking Challenge


HITB Cinema Sponsor

Avenuz Sdn. Bhd.

Official Creation Station

The Womb.com

Our Speakers are Supported By

F-Secure Corporation

Arbor Networks


Bellua Asia Pacific


Mozilla Corporation

Mu Security

Supporting Media:

Virus Bulletin

Virus Bulletin (VB)

InfoSec News

(ISN) InfoSec News

InfoSec News

XAKEP (Russia)

Insecure Magazine

PHRACK Magazine

Hakin9 Magazine

Supporting Organizations

Chaos Computer Club

ISECOM - Insititue for Security and Open Methodologies


IT Underground

X-Focus China

Zone-H Defacement Mirror

Xatrix Security

Special Interest Group in Security & Information InteGrity Singapore