I just submitted this 45-min. talk:
A new, stronger IPv6 Router Advertisement flood attack was released in October, 2012. It can freeze or crash Windows 8, Mac OS X, BSD Unix, and Android.
Sockstress was developed in 2008, but was never thoroughly patched. It works remotely and can damage Web servers so badly that they cannot be rebooted. It abuses an intrinsic feature of TCP; so almost any device that uses TCP is vulnerable.
I will also discuss countermeasures for these attacks--the easiest is to filter them out with firewalls.
After a brief explanation of the vulnerabilities, attacks, and defenses, students will set up a vulnerable SQL website using SQLol, exploit it with Havij (the tool Anonymous used to exploit PBS), and protect it with input validation.
Additional projects are available for you to use in your classes, demonstrating other attacks and a better defense--parameterized queries.
All the powerpoint slides, lecture notes, and hands-on projects will be `freely available for you to incorporate into your own classes.
This workshop will use Backtrack Linux and SQLol.