LASCON 2014 has ended
Friday, October 24 • 2:00pm - 2:45pm
Ruby Meta-programming: Here's how to do it wrong

Sign up or log in to save this to your schedule and see who's attending!

Ruby is a powerful programming language, it includes way to write dynamic code at run time, this is called meta-programming. Meta-programming, everyones favorite Rubyism to hate. It can lead to less code, more abstraction and tears of pain and sorrow. During the review of lots of Rails and Ruby applications we’ve see how meta-programming has lead to some really interesting but terrible security flaws. 

In this talk, we’ll do a deep dive into examples of how meta-programming can bite you in a big way.

avatar for Michael McCabe

Michael McCabe

Security Architect, Stratum Security
Michael McCabe is a security consultant and developer. He works on making XFIL more secure and enjoys automating away the boring stuff, and RCE.
avatar for Ken Toler

Ken Toler

Senior Application Security Consultant, nVisium
Ken Toler is a Senior Application Security Consultant at nVisium specializing in web application penetration testing and static analysis in Ruby, Java, and .NET. He also comes with a network security background and has worked closely with growing startups in the DC area.

Friday October 24, 2014 2:00pm - 2:45pm
Magnolia Room Norris Conference Center, http://lascon.org/venue/

Attendees (0)