Server-side scanning with Florian Hantke

In the latest episode of CISPA TL;DR, web security researcher Florian Hantke tells us why the majority of web vulnerabilities can hardly be scientifically investigated so far. There's a reason: most of them are on the server side. As targeted server-side scanning could expose sensitive data on the one hand and lead to server failures and thus financial losses on the other, the process is problematic both legally and ethically. The consequence is that many vulnerabilities remain undetected and could therefore be exploited by attackers. In this episode, Florian tells us what he learned about server side scanning in discussions with legal scholars, server operators and ethicists. The conversation was recorded in German. Have fun listening!