Why the web is different

Web 101 (it's special considerations/fault model):
(overview of what we will be studying the next 2 weeks) Our Mantra:
*Trust no network or data, do all important processing on the server

Web Application Penetration Testing

What is a Web Application Penetration Test?

A penetration test is a method of evaluating the security of a computer system or network by simulating an attack. A Web Application Penetration Test focuses only on evaluating the security of a web application. The process involves an active analysis of the application for any weaknesses, technical flaws or vulnerabilities. Any security issues that are found will be presented to the system owner together with an assessment of their impact and often with a proposal for mitigation or a technical solution.

What is a vulnerability?

Given application owns a set of assets (resources of value such as the data in a database or on the file system), a vulnerability is a weakness on a asset that makes a threat possible. So a threat is a potential occurrence that may harm an asset exploiting Vulnerability. A test is an action that tends to show a vulnerability in the application.

Pen-Testing Roadmap

*Where we will be concentrating

Information Gathering

Application Fingerprint

What server is running?

Analysis of error codes

How do we secure our servers?


ZAP (and Nikto if you really want to) - install and play!