The term pickle has become synonymous with insecurity in the modern python community and yet it remains one of the most prevalent serialization formats in the python ecosystem. However, pickle, despite its wide use, has been talked to death. In this talk, we will take a step back and look at the root problem, the use of bytecode driven serialization formats. We'll dissect both pickle and RDS, R's serialization format, giving a never before seen deep dive into the R language's main serialization format..... By: Kasimir Schulz | Principal Security Researcher, HiddenLayer Tom Bonner | Vice President of Research, HiddenLayer Full Abstract and Presentation Materials: https://ift.tt/20lzV9t
source https://www.youtube.com/watch?v=yrM1ryBaIJs
-
Axis Security, a company that specializes in private application access, emerged from stealth mode on Tuesday with $17 million in funding....
-
Germany recalled its ambassador to Russia for a week of consultations in Berlin following an alleged hacker attack on Chancellor Olaf Scho...
No comments:
Post a Comment