security - Eduguru - Page 15

IT Security Networking Tutorial Web Hosting Website

Vulnerable Web Server Software

May 18, 2020 Krishna Apache Chunked Encoding Overflow, Buffer Overflow Vulnerabilities, HACKING, iPlanet Search Overflow, IT- Security, Microsoft IIS ISAPI Extensions, Microsoft IIS WebDav Overflow, security, Vulnerable Web Server Software, web hacking, web-app, web-app-hack, web-site

Web server products range from extremely simple and lightweight software which does little more than serve up static pages, to

IT Security linux Tutorial Web Hosting Website

Buffer Overflow Vulnerabilities

May 16, 2020 Krishna “Off-by-One” Vulnerabilities, Attacking Compiled Applications, Buffer, Buffer Overflow Vulnerabilities, Detecting Buffer Overflow Vulnerabilities, ETHICAL HACKING, Heap Overflows, security, Stack Overflows, VULNERABILITIES, web-app, web-site

Buffer overflow vulnerabilities occur when an application copies user-controllable data into a memory buffer that is not sufficiently large to

IT Security linux Tutorial Web Hosting Website

Technical Challenges Faced by Vulnerability Scanners

May 16, 2020 Krishna A Web Application Hacker’s Toolkit, Authentication and Session Handling, Dangerous Effects, ETHICAL HACKING, Individuating Functionality, Other Challenges to Automation, security, Technical Challenges Faced by Scanners, Technical Challenges Faced by Vulnerability Scanners, Using a Vulnerability Scanner, web security, web-app, web-app-hack, web-site, web-site-hack

The barriers to automation described previously lead to a number of specific technical challenges that must be addressed in the

Tutorial Web Hosting Website

Manual Request Tools

May 14, 2020 Krishna A Web Application Hacker’s Toolkit, ETHICAL HACKING, HACKING, html, http, HTTP Authentication, LAN, Manual Request Tools, security, Shared Functions and Utilities, web-app, web-site, web-site-security

The manual request component of the integrated test suites provides the basic facility to issue a single request and view

Tutorial Web Hosting Website

A Web Application Hacker’s Toolkit

May 13, 2020May 13, 2020 Krishna A Web Application Hacker’s Toolkit, Cookies, ETHICAL HACKING, Firefox, FoxyProxy, HACKING, HTML documents, http, HTTP Requests, Internet Explorer, Opera, scripts, security, Web Browsers, web security, web-app, web-site

Some attacks on web applications can be performed using only a standard web browser; however, the majority of them require

Tutorial Web Hosting Website

Attacking ActiveX Controls

May 13, 2020May 13, 2020 Krishna Attacking ActiveX Controls, Attacking Other Users, COMRaider showing the methods of an ActiveX control, ExecuteCommand, Finding ActiveX Vulnerabilities, html, Preventing ActiveX Vulnerabilities, security, web security, web-app, web-app-hack, web-site

ActiveX controls are of particular interest to an attacker who is targeting other users. When an application installs a control

Tutorial Web Hosting Website

Session Fixation

May 12, 2020 Krishna attacker, Attacking Other Users, ETHICAL HACKING, Finding and Exploiting Session Fixation Vulnerabilities, Preventing Session Fixation Vulnerabilities, security, Session Fixation, The steps involved in a session fixation attack, UserSession Fixation, web-app, web-app-security, web-site

Session fixation vulnerabilities typically arise when an application creates an anonymous session for each user when they first access the

Tutorial Web Hosting Website

HTTP Header Injection

May 12, 2020 Krishna Attacking Other Users, Delivering Other Attacks, ETHICAL HACKING, Exploiting Header Injection Vulnerabilities, HTTP Header Injection, HTTP Response Splitting, Injecting Cookies, Input validation, Output validation, Preventing Header Injection Vulnerabilities, security, web security, web-app, web-app-hack, web-site

HTTP header injection vulnerabilities arise when user-controllable data is inserted in an unsafe manner into an HTTP header returned by

Tutorial Web Hosting Website

Real-World Logic Flaws

May 11, 2020 Krishna Attacking Application Logic, Breaking the Bank, Erasing an Audit Trail, ETHICAL HACKING, Fooling a Password Change Function, Proceeding to Checkout, Real-World Logic Flaws, Rolling Your Own Insurance, security, The Assumption, The Attack, The Functionality, web-app, web-site

The best way to learn about logic flaws is not by theorizing, but through acquaintance with some actual examples. Although

Tutorial Web Hosting Website

Attacking Application Logic

May 11, 2020 Krishna Attacking Application Logic, ETHICAL HACKING, security, The Nature of Logic Flaws, we-development, web security, web-app, web-design, web-site

All web applications employ logic in order to deliver their functionality. Writing code in a programming language involves at its