Web App Testing

The document outlines various layers of software development and security, detailing approaches to security testing and tools used in network and Active Directory penetration testing. It highlights vulnerabilities related to authentication, authorization, session management, input validation, information leakage, cryptography, and system configuration. Specific tools and methods for testing and exploiting these vulnerabilities are also discussed.

Uploaded by

amjuri

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

4 views11 pages

Web App Testing

Uploaded by

amjuri

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

• Layers of software development and security

• Approach of security testing

• What we have done
Network Pen Test
• Nmap – port scanning
• Caldera – automated red team system by MITRE (open source & licensed)
• Wireshark – packet sniffing
• Scapy – packet manipulation Very Simple Network Scanner – to ping windows based platforms
• Firewalk – to enumerate firewall rule set, works similar to Traceroute, currently the tool functionality
is merged with NMAP
• Useful windows utilities:
• netstat – to obtain information on current TCP/UDP connections, routing table Active Directory
Penetration Testing
• Mimikatz – extracts plaintext passwords, hash, pin codes and Kerberos tickets from memory
• DCShadow – a mimikatz feature used to manipulate AD data
• DCSync – used to simulate DC and ask for pwd
• SkeletonKey – it is a malware that allows any Domain user to authenticate using master pwd
• Authentication
• Authorization
• Session Management
• Input Validation
• Information Leakage
• Cryptography
• System Configuration
Authentication

• Authentication Bypass
• Poor Password Strength
• No Account Lockout
• No Log-out functionality
• Unencrypted Log in Request
• Weak Change Password functionality
• Weak Forgot Password functionality
• Weak Reset Password functionality
• No Change Password functionality
Authorization

• Horizontal Privilege Escalation

• Vertical Privilege Escalation
• Forceful Browsing
Session Management:

• Session Fixation
• Improper Session Expiration on logout
• Session time out too long
• Unencrypted Session Tokens
• Predictable Session Tokens
• Session ID transmitted as URL parameter
• HTTPOnly flag not enabled for session cookie
• Secure flag not enabled for session cookie
Input Validation

• Error Messages
• HTML Comments
• Source Code Disclosure
• Cross Frame Spoofing
• Server Platform Info Leak
• Sensitive Data Revealed
Cryptography

• Weak SSL version

• Weak Encryption Key
• Unencrypted Sensitive Data (Eg: Passwords, Cookies)
• Weak Encryption Algorithm
• Weak Encryption Ciphers
System Configuration

• Default Passwords Enabled

• Default Pages Enabled
• Default Error Messages Enabled
• Unpatched Software
• Harmful HTTP Methods Enabled
• Unhandled Exceptions

SecurityTesting Concepts
No ratings yet
SecurityTesting Concepts
12 pages
Information Gathering Test Name
No ratings yet
Information Gathering Test Name
15 pages
Web App Cheat Sheet 2
No ratings yet
Web App Cheat Sheet 2
1 page
OWASP: Testing Guide v4.2 Checklist: Information Gathering Test Name
No ratings yet
OWASP: Testing Guide v4.2 Checklist: Information Gathering Test Name
20 pages
Owasp Top 10
No ratings yet
Owasp Top 10
22 pages
Ethical Hacking and Prevention Course Details in PDF
No ratings yet
Ethical Hacking and Prevention Course Details in PDF
24 pages
General SIEM Q
No ratings yet
General SIEM Q
12 pages
Penetration Test Summary Project
No ratings yet
Penetration Test Summary Project
6 pages
New Cybersecurity Course Outline
No ratings yet
New Cybersecurity Course Outline
12 pages
Internal Pen Test Report
No ratings yet
Internal Pen Test Report
6 pages
Web Security and HTTP Protocols
No ratings yet
Web Security and HTTP Protocols
5 pages
Advanced Pentesting and Forensics
No ratings yet
Advanced Pentesting and Forensics
15 pages
Cyber Security 1
No ratings yet
Cyber Security 1
12 pages
Ethical Hacking and Cyber Security - IIT Roorkee
No ratings yet
Ethical Hacking and Cyber Security - IIT Roorkee
4 pages
CyberSecurity Curriculum
No ratings yet
CyberSecurity Curriculum
10 pages
Pentest Checklists
100% (1)
Pentest Checklists
20 pages
OWASP Testing Guide Checklist Overview
No ratings yet
OWASP Testing Guide Checklist Overview
10 pages
Ethical Hacking and Prevention: Course Contents
No ratings yet
Ethical Hacking and Prevention: Course Contents
4 pages
Web Server Pentesting Checklist
No ratings yet
Web Server Pentesting Checklist
5 pages
Penetration Testing
100% (1)
Penetration Testing
52 pages
Web PEN Test Report
100% (1)
Web PEN Test Report
8 pages
Active Testing
No ratings yet
Active Testing
9 pages
Advance Penetration Testing Kali Linux Training
0% (1)
Advance Penetration Testing Kali Linux Training
4 pages
Bug Bounty Checklist
100% (1)
Bug Bounty Checklist
7 pages
Certified Ethical Hacker (CEH) v12 Outline
100% (1)
Certified Ethical Hacker (CEH) v12 Outline
8 pages
Checklist One
No ratings yet
Checklist One
20 pages
Cyber Security Course Content
0% (1)
Cyber Security Course Content
6 pages
Ethical: Hacking and
No ratings yet
Ethical: Hacking and
4 pages
Comprehensive Security Vulnerabilities List
No ratings yet
Comprehensive Security Vulnerabilities List
1 page
Penetration Testing Checklist
No ratings yet
Penetration Testing Checklist
9 pages
Ethical Hacking & Security Guide
No ratings yet
Ethical Hacking & Security Guide
4 pages
Wa0024.
No ratings yet
Wa0024.
4 pages
Web Pentest Checklist
No ratings yet
Web Pentest Checklist
76 pages
Pawan Final
No ratings yet
Pawan Final
78 pages
NetSPI Scott Sutherland RedvsBlue v3.2 PDF
No ratings yet
NetSPI Scott Sutherland RedvsBlue v3.2 PDF
1 page
Web Application Test Cases
No ratings yet
Web Application Test Cases
10 pages
Spurtcommerce Security Testing Guide
No ratings yet
Spurtcommerce Security Testing Guide
15 pages
Security Audit Tools Guide
100% (1)
Security Audit Tools Guide
7 pages
Hack Tools
No ratings yet
Hack Tools
6 pages
Security+ Notes Alan Raff
No ratings yet
Security+ Notes Alan Raff
6 pages
Web Pentesting Checklist Guide
No ratings yet
Web Pentesting Checklist Guide
10 pages
2 Eh
No ratings yet
2 Eh
11 pages
5 Mins Presentation-Session Vulnerabilities
No ratings yet
5 Mins Presentation-Session Vulnerabilities
7 pages
EH
No ratings yet
EH
2 pages
Web Security Terms and Definitions
No ratings yet
Web Security Terms and Definitions
3 pages
Ethical Hacking Curriculum
No ratings yet
Ethical Hacking Curriculum
4 pages
Certified Ethical Hacker Course Content
No ratings yet
Certified Ethical Hacker Course Content
36 pages
CompTIA-Security-notes - CompTIA Security+ SY0-601 Notes (Passed 788 Points)
100% (1)
CompTIA-Security-notes - CompTIA Security+ SY0-601 Notes (Passed 788 Points)
36 pages
WAPT Checklists
No ratings yet
WAPT Checklists
18 pages
Cyber Security and Ethical Hacking - Powered by StackNexus
No ratings yet
Cyber Security and Ethical Hacking - Powered by StackNexus
37 pages
Unit 2 Ethical-1
No ratings yet
Unit 2 Ethical-1
12 pages
Security Testing Fundamentals
No ratings yet
Security Testing Fundamentals
28 pages
Comprehensive Vulnerability Checklist
No ratings yet
Comprehensive Vulnerability Checklist
4 pages
Web Application Security Testing Guide
No ratings yet
Web Application Security Testing Guide
6 pages
?active Directory Attack Methodology
No ratings yet
?active Directory Attack Methodology
4 pages
Network Security Training Course
No ratings yet
Network Security Training Course
10 pages
Individual Report - Bhavook Kalra
No ratings yet
Individual Report - Bhavook Kalra
15 pages
WSTG-Checklist v4.2
No ratings yet
WSTG-Checklist v4.2
29 pages
VAPT General Questions
No ratings yet
VAPT General Questions
9 pages
Motherboard Parts and Functions
No ratings yet
Motherboard Parts and Functions
21 pages
Assembler Directives
100% (1)
Assembler Directives
5 pages
Latches Objective Questions
No ratings yet
Latches Objective Questions
4 pages
Full Stack Developer Assignment - Movie Review Platform
No ratings yet
Full Stack Developer Assignment - Movie Review Platform
3 pages
Isomorphic Go (Balasubramanian 2017-12-29) (C70C7E2F) PDF
100% (1)
Isomorphic Go (Balasubramanian 2017-12-29) (C70C7E2F) PDF
505 pages
Student App GuideForStudents
No ratings yet
Student App GuideForStudents
4 pages
Javascript Tutorial: Examples in Each Chapter
No ratings yet
Javascript Tutorial: Examples in Each Chapter
6 pages
PWP 5
No ratings yet
PWP 5
9 pages
Sai Prasanna Kumar G - 4+ DataEngineer (GCP)
No ratings yet
Sai Prasanna Kumar G - 4+ DataEngineer (GCP)
3 pages
Networking 1 Tutorial
No ratings yet
Networking 1 Tutorial
12 pages
Credits
No ratings yet
Credits
1 page
CV NguyenTienDat
No ratings yet
CV NguyenTienDat
3 pages
Mandarin Library Automation Guide
No ratings yet
Mandarin Library Automation Guide
16 pages
SQL Query Assignment Guide
No ratings yet
SQL Query Assignment Guide
4 pages
Software Applications in Construction Management
No ratings yet
Software Applications in Construction Management
2 pages
HCIA-Routing & Switching Q&A Guide
No ratings yet
HCIA-Routing & Switching Q&A Guide
105 pages
Fix Orders SB
No ratings yet
Fix Orders SB
69 pages
S Um Lincom V1.9.1
No ratings yet
S Um Lincom V1.9.1
36 pages
Module 1 Chapter 1
No ratings yet
Module 1 Chapter 1
50 pages
CS 1000/CS 3000 CENTUM Data Access Library
No ratings yet
CS 1000/CS 3000 CENTUM Data Access Library
186 pages
08 Linux Standard Directories
No ratings yet
08 Linux Standard Directories
4 pages
Daa Travel Salesman Problem Using Brute Force Method
No ratings yet
Daa Travel Salesman Problem Using Brute Force Method
7 pages
NodeManager SSLKeyException
No ratings yet
NodeManager SSLKeyException
2 pages
Let's Code CRUDQ and Function Import Oper PDF
No ratings yet
Let's Code CRUDQ and Function Import Oper PDF
23 pages
SQL QuickStart Guide The Simplified Beginner S Guide To Managing Analyzing and Manipulating Data With SQL 1st Edition Shields Ready To Read
No ratings yet
SQL QuickStart Guide The Simplified Beginner S Guide To Managing Analyzing and Manipulating Data With SQL 1st Edition Shields Ready To Read
81 pages
Sahil Patel
No ratings yet
Sahil Patel
14 pages
Essential Excel Shortcuts Guide
No ratings yet
Essential Excel Shortcuts Guide
3 pages
Ops Manager Installation
No ratings yet
Ops Manager Installation
6 pages
AI Project: Chatbot and Algorithms
No ratings yet
AI Project: Chatbot and Algorithms
5 pages

Web App Testing

Uploaded by

Web App Testing

Uploaded by

• Layers of software development and security

• Approach of security testing

• Horizontal Privilege Escalation

• Cross Site Scripting

• Weak SSL version

• Default Passwords Enabled

You might also like