Meetings

Apr 15:

Active Directory Workshop

Apr 08:

Server Side Template Injection

Apr 01:

DDos Defense workshop

Mar 25:

Server-Side Attacks Workshop

Mar 11:

SolarWinds Hack of 2020

Mar 04:

ClearCo Alumni Talk

Feb 25:

Breaking the Vigenère Cipher

Feb 19:

Fortinet Guest Talk

Feb 11:

Cross Site Scripting (XSS) ...

Feb 04:

Spring 2025 GBM

Oct 11:

Active Directory/Incident R...

Oct 08:

Forensics Workshop

Oct 04:

Advanced Rev: Breaking Obfu...

Oct 01:

Reversing Workshop

Sep 27:

Advanced Web Workshop: Data...

Sep 24:

Web Exploitation Workshop

Sep 20:

Hack the Box and Setting Up...

Sep 17:

Sep 13:

Sep 10:

Apr 23:

Apr 18:

Apr 16:

Apr 09:

Cloud and Containers Workshop

Apr 02:

Caesar Creek Guest Talk

Mar 05:

Windows Active Directory Wo...

Feb 27:

Cryptography Workshop

Feb 23:

Intro to Web Exploitation: ...

Feb 20:

Web Serialization Workshop

Nov 11:

HackUMass Workshop: Hardwar...

Nov 10:

Guest Talk: KPMG

Nov 07:

Guest Talk: Interrupt Labs ...

Oct 31:

Oct 27:

Playing HackTheBoo

Oct 24:

Forensics Workshop

Oct 20:

Advanced Topics: Ghidra & P...

Oct 17:

Introduction to Reverse Eng...

Oct 13:

Guest Talk: Tib3rius

Oct 06:

Red vs. Blue Team Simulatio...

Oct 03:

Introduction to Web Exploit...

Sep 29:

Red vs. Blue Team Simulation I

Sep 26:

Penetration Testing (Pentes...

Sep 19:

Sep 15:

Playing CSAW CTF

Sep 12:

General Body Meeting (GBM)

Sep 08:

CICS First Friday Fair

May 17:

Guest Talk: Tib3rius

May 03:

Web Serialization Workshop

Apr 07:

Guest Talk: Battelle

Apr 05:

Talking about OSCP

Mar 29:

UMassCTF 2023 Breakdown Wor...

Mar 22:

Hardware Hacking Workshop

Mar 03:

Red vs. Blue Simulation II

Mar 01:

Client-Side Web Workshop

Feb 25:

Playing VU CYBERTHON 2023

Feb 24:

Red vs. Blue Simulation I

Feb 22:

Cybersecurity Careers Workshop

Feb 15:

General Body Meeting (GBM)

Dec 09:

KITCTFCTF 2022 and Collegia...

Dec 07:

Docker and AWS Basics

Dec 02:

HackTheBox (HTB) Uni CTF 20...

Nov 30:

Fuzzing Workshop

Nov 16:

Active Directory Workshop

Nov 08:

Forensics Workshop

Nov 04:

Collegiate Cyber Defense Co...

Oct 28:

Collegiate Penetration Test...

Oct 26:

Oct 21:

Collegiate Penetration Test...

Oct 19:

Binary Exploitation Workshop

Oct 14:

Collegiate Penetration Test...

Oct 12:

Reverse Engineering Workshop

Oct 05:

Web Exploitation Workshop

Sep 30:

Capture-the-Flag (CTF) and ...

Sep 28:

Introduction to Penetration...

Sep 21:

Sep 14:

General Body Meeting (GBM)

May 05:

Creating and Managing Cloud...

Feb 23:

DevSecOps Workshop

Feb 09:

Security Incidence Response...

Feb 03:

Spring General Body Meeting...

Nov 11:

Crypto Workshop

Nov 11:

General Body Meeting

Nov 09:

Embedded Medical Device Sec...

Nov 06:

Fuzzing Workshop @ HackUMass

Nov 05:

Kubernetes Talk w/ Brendan ...

Nov 04:

Google Cloud w/ Ensure Acce...

Oct 28:

Binary Exploitation Workshop

Oct 14:

Oct 13:

Careers Panel w/ Akamai

Sep 30:

Reversing Workshop

Sep 16:

May 04:

End of Semester Social Party

Apr 22:

Google Cloud Workshop: Secu...

Apr 09:

Cyber Defense Talk: Lateral...

Mar 20:

picoCTF Workshop

Mar 04:

Digital Forensics and Incid...

Feb 19:

Trends in Cybersecurity Ind...

Feb 17:

Shellcoding Workshop

Feb 10:

General Body Meeting

Dec 19:

Basics of SQLi for HackUMass

Dec 15:

Infosec Industry Talk w/ Je...

Nov 18:

Network Exploitation w/ Nic...

Oct 30:

Turning a Web App Firewall,...

Oct 17:

Lockdown v9 Cyberdefense Co...

Oct 17:

Hivestorm Competition Day

Oct 02:

A Top Concern for Democracy...

Sep 22:

UMassCTF Prep: Crypto Dash ...

Sep 22:

UMassCTF Prep: Crypto Dash ...

Sep 15:

UMassCTF Prep: Linux Fun-da...

Sep 14:

UMassCTF Prep: Linux Fun-da...

Sep 09:

General Body Meeting (GBM)

May 02:

Lockdown v8 Cyberdefense Co...

Apr 23:

Crisis and Incident Managem...

Apr 14:

Cybersecurity Alumni Panel

Apr 09:

FBI Agent Talk with Scott M...

Mar 24:

Oracle's WAF and Cybersecur...

Mar 12:

Intro to the Cybersecurity ...

Mar 09:

Voatz Bug Bounty Challenge

Mar 04:

Learning Assembly For Fun a...

Feb 13:

General Body Meeting (GBM)

Dec 11:

End of Semester Event

Nov 19:

Jane Tangen's Digital Foren...

Nov 05:

Jane Tangen's Digital Foren...

Oct 23:

Intro to Binary Exploitatio...

Oct 22:

Jane Tangen's Digital Foren...

Oct 11:

Breaking Cryptography w/ St...

Oct 09:

Andrey Yesyev presents DNS ...

Sep 27:

Cybersecurity Club Kickoff ...

Sep 26:

General Body Meeting

Apr 23:

Bruce Bosnall Industry Talk

Apr 09:

Brian Levine on Forensic In...

Mar 05:

Talk from Amir Houmansadr o...

Feb 20:

Talk from Andrew Reiter, Se...

Dec 05:

Workshop from Jeff Long, Pr...

Nov 29:

Talk from Wayne Burleson on...

Oct 18:

Talk from Marc Liberatore o...

Oct 09:

Talk from Justin Peavey, CI...

Sep 20:

Talk from Brian Levine on C...

Sep 18:

General Body Meeting

Apr 26:

General Body Meeting (with ...

Mar 28:

Talk from Prashanth Ram, a ...

Feb 15:

Workshop on Reverse Enginee...

Feb 12:

Talk from Andrew Reiter, re...

Dec 06:

Nov 29:

Raytheon BBN Tech Talk

Nov 08:

Cyber Security in the Corpo...

Oct 18:

Security at Facebook Inform...

Sep 29:

Sep 25:

Talk from Cisco on Cybersec...

Sep 14:

General Interest Meeting

Apr 27:

Cybersecurity Conquest

Apr 06:

Talk on Security and Machin...

Mar 21:

Talk on Security at Google

Feb 28:

KPMG Security Tech Talk

Feb 23:

CTF Competition

Feb 15:

Optum Tech Talk

Feb 02:

CTF Prep Workshop

Jan 26:

General Interest Meeting- S...

Dec 07:

Social Night: Mr. Robot Scr...

Dec 02:

Idea Jam & Team Formation: ...

Nov 09:

Panel: Cybersecurity in the...

Nov 08:

KPMG Tech Talk featuring Ch...

Oct 27:

Simplivity Tech Talk

Oct 20:

Activity Day: Learn Cyberse...

Sep 28:

RSA Tech Talk featuring Mar...

Sep 21:

Red Team Tactics Workshop

Sep 19:

UMass ACM Annual General In...

Sep 14:

Akamai Tech Talk featuring ...

Sep 08:

UMass Cybersecurity Club Fi...

Server Side Template Injection

Tue, Apr 08 2025

7:00 PM - 8:00 PM

LGRC A112

Server Side Template Injection is a web exploitation technique that involves injecting malicious input into templates on the server 🤯. We will walk through the basics of detecting and leveraging an SSTI with a tutorial and hands on lab.