Practical CodeQL for Auditors

Solving the halting problem is not your thing? If so, this workshop is for you!

In this workshop, I will get you up and running with CodeQL and help you avoid common pitfalls that often lead new users to abandon attempts to use the tool. We will focus not on solving the halting problem, but on translating simple but effective auditing ideas into queries that will let you navigate a target codebase.

Agustin Gianni

Agustin Gianni is a security researcher at GitHub Security Lab with more than 10 years of experience. Agustin specializes in source code auditing: mainly C/C++ codebases, such as browsers, operating systems, and emulators/hypervisors. He likes to spend his free time posting memes on irc.

Previous
Previous

Hacking JavaScript Desktop Apps with XSS and RCE

Next
Next

Security Lessons from CoVID-19