This talk aims to introduce penetration testers and application security researches to some basics of AngularJS and Angular applications. We will also show some ways in which we can dynamically debug angular code from the browser console. This allows us to change the behavior on an application by manipulating angular scope values, controller and component functions, as well as services. With that knowledge in hand, we can start conducting a more in-depth analysis of angular based applications.
After completing this session, the learner will: - Learn just enough Angular to up our pentesting game - Learn to manipulate Angular applications using the browser console
Alex Useche is an Application Security Consultant at nVisium with over 12 years of experience in the IT industry as a software developer, security engineer, and penetration tester. Alex is actively working on developing security tools written in Go and participating in various bug bounties.