Explore web application security vulnerabilities and attack surfaces in this conference talk from Hack3rcon 2014. Learn how to identify potential weaknesses in web applications using the RAWR (Reconnaissance, Analysis, Weaponization, and Reporting) methodology. Gain insights from security experts Tom Moore and Adam Byers as they discuss techniques for assessing and improving web application security posture.