TMI: Assessing and Exploiting SharePoint at DerbyCon 3.0


James and I presented at DerbyCon last week.  We talked about some of the weaknesses found in SharePoint deploys and ways to test them.  We also walked through a couple of tools we are releasing that people can use to test and exploit SharePoint.

Here is the video from that presentation.

Kevin Johnson is the CEO of Secure Ideas. If you are in need of a penetration test or other security consulting services you can contact him at or visit the Secure Ideas – Professionally Evil site for services provided.