Scribd Logo
Unggah

Selamat datang di Scribd!

  • Webapp Review Ehacking

    Diunggah oleh

    api-224615605
    34 tayangan11 halaman
    STEVE BOLT - ETHICAL HACKING - Web Applications. Everything has a web front end as such the security of the web application needs to be vetted and tested. SQL injection Manipulation of URLs Malformed data inputs Web Application Testing SQL inject me XSS inject me Web Application Testing Finds the low hanging fruit. LAB Nikto and ZAP labs review We have covered a great deal over the course of the week Again, this is just the beginning Many texts

    Deskripsi Asli:

    Judul Asli

    webapp review ehacking

    Hak Cipta

    © © All Rights Reserved

    Format Tersedia

    PPTX, PDF, TXT atau baca online dari Scribd

    Apakah menurut Anda dokumen ini bermanfaat?

    Apakah konten ini tidak pantas?

    Laporkan Dokumen Ini
    STEVE BOLT - ETHICAL HACKING - Web Applications. Everything has a web front end as such the security of the web application needs to be vetted and tested. SQL injection Manipulation of URLs Malformed data inputs Web Application Testing SQL inject me XSS inject me Web Application Testing Finds the low hanging fruit. LAB Nikto and ZAP labs review We have covered a great deal over the course of the week Again, this is just the beginning Many texts

    Hak Cipta:

    © All Rights Reserved
    Unduh sebagai PPTX, PDF, TXT atau baca online dari Scribd
    Tandai sebagai konten tidak pantas
    34 tayangan11 halaman

    Webapp Review Ehacking

    Diunggah oleh

    api-224615605
    STEVE BOLT - ETHICAL HACKING - Web Applications. Everything has a web front end as such the security of the web application needs to be vetted and tested. SQL injection Manipulation of URLs Malformed data inputs Web Application Testing SQL inject me XSS inject me Web Application Testing Finds the low hanging fruit. LAB Nikto and ZAP labs review We have covered a great deal over the course of the week Again, this is just the beginning Many texts

    Hak Cipta:

    © All Rights Reserved
    Unduh sebagai PPTX, PDF, TXT atau baca online dari Scribd
    Tandai sebagai konten tidak pantas
    dari 11

    Web Applications

    ETHICAL HACKING
    STEVE BOLT

    Web Applications

    Web App Pen Testing

    Area that is of great concern

    IoT

    Everything has a web front end.

    As such the security of the web application needs to be vetted and


    tested.

    Web Application Testing

    SQL injection

    XSRF

    XSS

    Misconfiguration

    Manipulation of URLs

    Malformed data inputs

    Web Application Testing

    Nikto

    BurpSuite

    OWASP ZAP

    SQL inject me

    XSS inject me

    Web Application Testing

    Process

    Brute force scan

    But what footprint do you leave in the logs?

    Check for SQL injection vulnerabilities

    Basically looking for field validation

    XSRF

    XSS

    Web Application Testing

    Nikto

    Finds the low hanging fruit

    Misconfigurations in code

    Might lead to an exploitable situation

    Web Application Testing

    Manipulation of sent data

    Burp Suite

    ZAP

    Allow you to see what is sent and what is received

    Effectively put a stop between sending and receiving packets

    Can view and edit responses

    Allows you to test parameters

    Web Application
    LAB TIME......

    LAB

    Nikto and ZAP labs

    Review

    We have covered a great deal over the course of the week

    Again, this is just the beginning

    Many texts/certs that you should review to master the material

    Students will ask

    Those that are passionate

    Review

    Thank you for your time

    Contact information

    Steven Bolt

    stevebolt@gmail.com

    sl_bolt skype

    Anda mungkin juga menyukai