linux - Eduguru - Page 18

IT Security linux Tutorial Web Hosting Website

Attacking the Web Server

May 18, 2020May 18, 2020 Krishna 'COPY', Attacking the Web Server, Dangerous HTTP Methods, Debug Functionality, Default Content, DELETE, Directory Listings, HTTP Methods, Misconfigured Virtual Hosting, Powerful Functions, PUT, Sample Functionality, Securing Web Server Configuration, The Web Server as a Proxy

As with any kind of application, a web application is dependent on the other layers of the technology stack that

IT Security linux Tutorial Web Hosting Website

Buffer Overflow Vulnerabilities

May 16, 2020 Krishna “Off-by-One” Vulnerabilities, Attacking Compiled Applications, Buffer, Buffer Overflow Vulnerabilities, Detecting Buffer Overflow Vulnerabilities, ETHICAL HACKING, Heap Overflows, security, Stack Overflows, VULNERABILITIES, web-app, web-site

Buffer overflow vulnerabilities occur when an application copies user-controllable data into a memory buffer that is not sufficiently large to

IT Security linux Tutorial Web Hosting Website

Technical Challenges Faced by Vulnerability Scanners

May 16, 2020 Krishna A Web Application Hacker’s Toolkit, Authentication and Session Handling, Dangerous Effects, ETHICAL HACKING, Individuating Functionality, Other Challenges to Automation, security, Technical Challenges Faced by Scanners, Technical Challenges Faced by Vulnerability Scanners, Using a Vulnerability Scanner, web security, web-app, web-app-hack, web-site, web-site-hack

The barriers to automation described previously lead to a number of specific technical challenges that must be addressed in the

IT Security linux Tutorial Web Hosting Website

Vulnerability Scanners

May 15, 2020 Krishna A Web Application Hacker’s Toolkit, Every Web Application Is Different, HTML markup, Inherent Limitations of Scanner, Scanners Are Not Intuitive, Scanners Do Not Improvise, Scanners Operate on Syntax, SQL injection vulnerabilities, Vulnerabilities Detected by Scanners, Vulnerability Scanners

A number of different tools exist for performing automated vulnerability scans of web applications. These scanners have the benefit of

Java Bytecode

April 8, 2020April 8, 2020 Krishna 80x86 instructions, A Bytecode Example, Bytecode Table, Bytecode type, Java bytecode, JVM, Object-oriented vs non-object-oriented, PointlessButton class, Prefix, prefixes, stack-based architecture, Stack-based architecture vs register-based architecture, Type Prefixes for Bytecode, Type Safety

A Bytecode Example Though you may not realize it, you have already seen an example of bytecode or at least

The Constant Pool

April 8, 2020 Krishna Beating the Decompilation Threat, class, Constant Pool Entry Types, Java, Java 2 Network Security, Java 2 SDK, Java source code, javac, javap Command, JIT compilers, JVM, PointlessButton, The Constant Pool, UTF8

We said that the constant pool contains a great deal of information. In fact it contains an interesting mixture of

The Java 2 Class File Format

April 8, 2020 Krishna assembler language, Class File Contents, Decompilation Attacks, decompiler, Entertainment, hexadecimal number, Java 2 Network Security, Java 2 SDK, Java Development Kit, JVM, Migration of applications, Modern compilers, The Java 2 Class File Format

The class file contains a lot more information than its cousin, the executable file. Of course, it still contains the

The Java Development Life Cycle

April 8, 2020April 8, 2020 Krishna C#, Class Files in Java 2, COBOL, Compiler Models, Count.class file, Disassembled Count.class File, JAR files, Java 2 Network Security, Java compiler, JVM, low-level machine language, Native Compiler, NetREXX, The Java Development Life Cycle

Moving back to the world of Java, we see that it is a high-level programming language and that bytecode is

Class Files in Java 2

April 8, 2020 Krishna Class Files in Java 2, executable, Java bytecode, Java Virtual Machine, object file, OPERATING SYSTEM, Program Compilation and Linking, program file, source file, The Traditional Development Life Cycle

The Traditional Development Life Cycle Java is a compiled language. That is, source code is written in a high-level language

The Java Virtual Machine

April 6, 2020 Krishna Close Up, Java 2 Network Security, JIT compilation, Just-in-Time Compilers, The Class Area, The Class File Verifier, The Class Loader, The Execution Engine, The Heap, The Java Virtual Machine, The Native Method Loader, The Security Manager, Trusted Classes, Untrusted Classes

Understanding how the various components of the Java Virtual Machine (JVM) cooperate to provide a secure execution environment will enable