Security Weekly Podcast Network (Audio) cover image

Security Weekly Podcast Network (Audio)

Top 10 Web Hacking Techniques of 2024 - James Kettle - ASW #318

Feb 18, 2025
Dive into the captivating realm of web hacking as industry expert James Kettle reveals the top 10 techniques for 2024. Discover why enduring flaws like XSS and SQL injection remain prevalent, despite new technologies like HTTP/3 and WebAssembly emerging. Uncover innovative approaches, including advanced SQL injection and cookie manipulation. The conversation also highlights the exciting intersection of AI and web vulnerability research, showcasing how tools like Shadow Repeater transform manual testing. Engage with the thrill of hacking and the crucial role of ongoing research in cybersecurity.
44:57

Podcast summary created with Snipd AI

Quick takeaways

  • The resurgence of SQL injection through innovative methods underscores the adaptability of legacy attack techniques in modern web frameworks.
  • Shifting to session storage from traditional cookie management could significantly enhance security by addressing inherent vulnerabilities in cookie systems.

Deep dives

The Impact of SQL Injection Techniques

One of the most surprising findings in this year's top web hacking techniques is the resurgence of SQL injection methods, specifically through a novel approach called 'muggling queries at the protocol level'. This technique highlights how attackers can exploit binary protocols to perform SQL injections, effectively bypassing traditional safeguards. By targeting the intricacies of database drivers and assuming their security, hackers reveal vulnerabilities overlooked by many. This innovative thinking showcases the potential for older attack methods to be adapted and reimagined within modern frameworks.

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.
App store bannerPlay store banner

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode