HACKING - Eduguru - Page 11

Tutorial Web Hosting Website

Liberal Cookie Scope

May 5, 2020May 5, 2020 Krishna Attacking Session Management, Cookie Domain Restrictions, Cookie Path Restrictions, HACKING, Liberal Cookie Scope, web-app-hacking, web-site hacking

The usual simple summary of how cookies work is that the server issues a cookie using the HTTP response header

Tutorial Web Hosting Website

Disclosure of Tokens in Logs

May 5, 2020 Krishna Attacking Session Management, Disclosure of Tokens in Logs, ETHICAL HACKING, HACKING, web, web application, web hacking, web-hack, website

Aside from the clear-text transmission of session tokens in network communications, the most common place where tokens are simply disclosed

Tutorial Web Hosting Website

Weaknesses in Session Token Generation

May 4, 2020 Krishna account username, Attacking Session Management, ETHICAL HACKING, HACKING, http, Meaningful Tokens, Weaknesses in Session Token Generation, web hacking, website

Session management mechanisms are often vulnerable to attack because tokens are generated in an unsafe manner that enables an attacker

Tutorial Web Hosting Website

Attacking Session Management

May 4, 2020 Krishna Alternatives to Sessions, Attacking Session Management, HACKING, HTTP Authentication, Sessionless state mechanisms, The Need for State, web hacking, web-site hacking, website

The session management mechanism is a fundamental security component in the majority of web applications. It is what enables the

Tutorial Web Hosting Website

Defects in Multistage Login Mechanisms

April 30, 2020April 30, 2020 Krishna attacker, Attacking Authentication, Defects in Multistage Login Mechanisms, Fail-Open Login Mechanisms, HACKING, Insecure Storage of Credentials, PASSWORD, security vulnerabilities, web hacking, website

Some applications use elaborate login mechanisms involving multiple stages. For example: ■ Entry of a username and password. ■ A

Tutorial Web Hosting Website

Implementation Flaws in Authentication

April 30, 2020 Krishna Attacking Authentication, Authentication, Fail-Open Login Mechanisms, HACKING, Implementation Flaws in Authentication, security, web application, web hacking, website

Even a well-designed authentication mechanism may be highly insecure due to mistakes made in its implementation. These mistakes may lead

Tutorial Web Hosting Website

User Impersonation Functionality

April 30, 2020April 30, 2020 Krishna HACKING, Incomplete Validation of Credentials, PASSWORD, password validation, User Impersonation Functionality, web hacking, website

Some applications implement the facility for a privileged user of the application to impersonate other users, in order to access

Tutorial Web Hosting Website

Forgotten Password Functionality

April 30, 2020 Krishna account recovery function, Attacking Authentication, forgotten password, Forgotten Password Functionality, HACKING, mechanisms, PASSWORD, URL, web hacking

Like password change functionality, mechanisms for recovering from a forgotten password situation often introduce problems that may have been avoided

Ethical Hacking IT Security

The Advantages of Ethical Hacking

January 17, 2020 Krishna ADVANTAGES OF ETHICAL HACKING, HACKING, TESTING SECURITY

Testing Security Measures The primary advantage of having ethical hackers on a company’s payroll is that the hackers are allowed

Ethical Hacking IT Security Tutorial Uncategorized

Hacking & Ethical Hacking

January 17, 2020January 17, 2020 Krishna ETHICAL HACKING, HACKING, Vulnerability

Hacking Gaining access to a system that you are not supposed to have access is considered as hacking. For example:

Next →