Static Detection of Vulnerabilities in Modern PHP Applications
26.11.2014, Bochum, Germany, Hackerpraktikum
https://www.nds.rub.de/teaching/hackpra/ (video, slides)
Code Reuse Attacks in PHP: Automated POP Chain Generation
04.11.2014, Scottsdale (AZ), USA, CCS
http://www.sigsac.org/ccs/CCS2014/pro_paper.html (slides)
Static Detection of Second-Order Vulnerabilities in Web Applications
21.08.2014, San Diego (CA), USA, Usenix Security
https://www.usenix.org/conference/usenixsecurity14/technical-sessions/presentation/dahse (slides)
Simulation of Built-in PHP features for Precise Static Code Analysis
22.02.2014, San Diego (CA), USA, NDSS
http://www.internetsociety.org/doc/simulation-built-php-features-precise-static-code-analysis (slides)
Logical Flaws in a PHP banking application
08.07.2012, Bochum, Germany, GData Academy
https://www.gdata.de (slides)
RIPS – Automatisierte Schwachstellenerkennung in PHP-Software mittels statischer Quellcode-Analyse
11.05.2011, Bonn, Germany, 12. Deutscher IT-Sicherheitskongress
https://www.bsi.bund.de/ContentBSI/Aktuelles/Veranstaltungen/IT-SiKongress/12itkongress2011.html (slides)
SQLi filter evasion and obfuscation
29.11.2010, Prague, Czech Republic, CONFidence 2.0
http://201002.confidence.org.pl/prelegenci/johannes-dahse (slides)
Social Network Attacks
20.07.2010, Bochum, Germany, Ruhr-University Bochum
http://emma.rub.de/teaching/courses/511/ (slides)
RIPS – A static source code analyser for vulnerabilities in PHP scripts
05.07.2010, Bochum, Germany, Ruhr-University Bochum
http://www.nds.rub.de/teaching/seminararbeiten/ (slides)
Web Security course “Hackerpraktikum”
2009-2011, Bochum, Germany, Ruhr-University Bochum
http://www.nds.rub.de/chair/lectures/439/
Basics of Web Security
29.05.2008, Bochum, Germany, Das Labor
https://www.das-labor.org/wiki/Grundlagen_der_Web-Sicherheit
Reiners' Weblog 