Explore cutting-edge web application security techniques in this 55-minute conference talk from nullcon Goa 2017. Delve into Runtime Application Self Protection (RASP) and learn how to implement runtime patching algorithms to secure vulnerable applications against code injection and other logical issues. Discover methods for preventing SQL injection, remote command execution, cross-site scripting, and more through dynamic rule generation and context-aware protection. Compare RASP to traditional Web Application Firewalls (WAFs) and understand its advantages in tackling modern AppSec challenges like session hijacking, Layer 7 DDoS, and credential stuffing. Gain insights into the future of runtime protection and its potential to defend against zero-day vulnerabilities affecting framework and language components.