Khalil Bijjou is an enthusiastic ethical hacker, bug hunter and penetration tester for the german IT security consulting firm EUROSEC. He performs security assessments for major companies especially in the field of web & mobile security and SAP. Khalil reached the 2nd place in the German Post IT Security Cup 2015 and was a speaker at PHDays.

Web Application Firewall Bypassing

This talk will teach you how to attack an application secured by a WAF. The moderator will describe WAF bypassing techniques and offer a systematic and practical approach on how to bypass web application firewalls based on these techniques. WAFNinja, a tool that helps to find multiple vulnerabilities in WAFs, will be introduced.