web hacking - Eduguru

IT Security Website

HTML Injection

June 17, 2020June 17, 2020 Krishna attack, HTML Injection, web hacking

Hypertext Markup Language (HTML) injection is also sometimes referred to as virtual defacement. This is really an attack made possible

IT Security Networking Tutorial Web Hosting Website

Vulnerable Web Server Software

May 18, 2020 Krishna Apache Chunked Encoding Overflow, Buffer Overflow Vulnerabilities, HACKING, iPlanet Search Overflow, IT- Security, Microsoft IIS ISAPI Extensions, Microsoft IIS WebDav Overflow, security, Vulnerable Web Server Software, web hacking, web-app, web-app-hack, web-site

Web server products range from extremely simple and lightweight software which does little more than serve up static pages, to

Tutorial Web Hosting Website

Avoiding Logic Flaws

May 11, 2020May 11, 2020 Krishna Attacking Application Logic, Avoiding Logic Flaws, ETHICAL HACKING, hacking technique, web hacking, web security, web-app, web-site

Just as there is no unique signature by which logic flaws in web applications can be identified, there is also

Tutorial Web Hosting Website

Injecting into SQL

May 6, 2020May 6, 2020 Krishna Bypassing a Login, Exploiting a Basic Vulnerability, http, Injecting Code, Injecting into SQL, Linux, PHP, SQL injection, web, web hacking, web-app, web-app-hack, web-site

Almost every web application employs a database to store the various kinds of information that it needs in order to

Tutorial Web Hosting Website

Injecting Code

May 5, 2020 Krishna attacker, code injection, command shell, HACKING, Injecting Code, Injecting into Interpreted Languages, interpreted language, ldap, Perl, PHP, shell scripting environment, SQL, VULNERABILITIES, vulnerable script, web application, web hacking, web-app, web-site

The topic of code injection is a huge one, encompassing dozens of different languages and environments, and a wide variety

Tutorial Web Hosting Website

Disclosure of Tokens in Logs

May 5, 2020 Krishna Attacking Session Management, Disclosure of Tokens in Logs, ETHICAL HACKING, HACKING, web, web application, web hacking, web-hack, website

Aside from the clear-text transmission of session tokens in network communications, the most common place where tokens are simply disclosed

Tutorial Web Hosting Website

Weaknesses in Session Token Generation

May 4, 2020 Krishna account username, Attacking Session Management, ETHICAL HACKING, HACKING, http, Meaningful Tokens, Weaknesses in Session Token Generation, web hacking, website

Session management mechanisms are often vulnerable to attack because tokens are generated in an unsafe manner that enables an attacker

Tutorial Web Hosting Website

Attacking Session Management

May 4, 2020 Krishna Alternatives to Sessions, Attacking Session Management, HACKING, HTTP Authentication, Sessionless state mechanisms, The Need for State, web hacking, web-site hacking, website

The session management mechanism is a fundamental security component in the majority of web applications. It is what enables the

Tutorial Web Hosting Website

Securing Authentication

May 4, 2020 Krishna Attacking Authentication, Handle Credentials Secretively, INTERNET, Prevent Brute-Force Attacks, Prevent Information Leakage, Prevent Misuse of the Password Change Function, Use Strong Credentials, Validate Credentials Properly, web, web hacking, website hacking

Implementing a secure authentication solution involves attempting to simultaneously meet several key security objectives, and in many cases trade off

Tutorial Web Hosting Website

Defects in Multistage Login Mechanisms

April 30, 2020April 30, 2020 Krishna attacker, Attacking Authentication, Defects in Multistage Login Mechanisms, Fail-Open Login Mechanisms, HACKING, Insecure Storage of Credentials, PASSWORD, security vulnerabilities, web hacking, website

Some applications use elaborate login mechanisms involving multiple stages. For example: ■ Entry of a username and password. ■ A

← Previous