Lyt når som helst, hvor som helst

Nyd den ubegrænsede adgang til tusindvis af spændende e- og lydbøger - helt gratis

  • Lyt og læs så meget du har lyst til
  • Opdag et kæmpe bibliotek fyldt med fortællinger
  • Eksklusive titler + Mofibo Originals
  • Opsig når som helst
Start tilbuddet
DK - Details page - Device banner - 894x1036

Penetration Testing of Computer Networks Using Burpsuite and Various Penetration Testing Tools

Sprog
Engelsk
Format
Kategori

Fakta

Burp Suite is an integrated platform/graphical tool for performing security testing of web applications. Burp suite is a java application that can be used to secure or crack web applications. The suite consists of different tools, like a proxy server, a web spider an intruder and a so-called repeater, with which requests can be automated. You can use Burp's automated and manual tools to obtain detailed information about your target applications. Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment. In this report I am using a combination of Burp tools to detect and exploit vulnerabilities in Damn Vulnerable Web App (DVWA) with low security. By default, Burp Scanner scans all requests and responses that pass through the proxy. Burp lists any issues that it identifies under Issue activity on the Dashboard. You can also use Burp Scanner to actively audit for vulnerabilities. Scanner sends additional requests and analyzes the application's traffic and behavior to identify issues. Various examples are outlined in this report for different types of vulnerabilities such as: SQL injection, Cross Site Request Forgery (CSRF), Cross-site scripting, File upload, Local and Remote File Inclusion. I tested various types of penetration testing tools in order to exploit different types of vulnerabilities. The report consists from the following parts: 1. Installing and Configuring BurpSuite 2. BurpSuite Intruder. 3. Installing XMAPP and DVWA App in Windows System. 4. Installing PHP, MySQL, Apache2, Python and DVWA App in Kali Linux. 5. Scanning Kali-Linux and Windows Using . 6. Understanding Netcat, Reverse Shells and Bind Shells. 7. Adding Burps Certificate to Browser. 8. Setting up Target Scope in BurpSuite. 9. Scanning Using BurpSuite. 10. Scan results for SQL Injection Vulnerability with BurpSuite and Using SQLMAP to Exploit the SQL injection. 11. Scan Results for Operating System Command Injection Vulnerability with BurpSuite and Using Commix to Exploit the OS Command Injection. 12. Scan Results for Cross Side Scripting (XSS) Vulnerability with BurpSuite, Using Xserve to exploit XSS Injection and Stealing Web Login Session Cookies through the XSS Injection. 13. Exploiting File Upload Vulnerability. 14: Exploiting Cross Site Request Forgery (CSRF) Vulnerability. 15. Exploiting File Inclusion Vulnerability. 16. References.

© 2023 Dr. Hidaia Mahmood Alassouli (E-bog): 9783988654809

Release date

E-bog: 11. marts 2023

Tags

    Andre kan også lide...

    1. Hacking Network Protocols: Complete Guide about Hacking, Scripting and Security of Computer Systems and Networks: Complete Guide about Hacking, Scripting and Security of Computer Systems and Networks. Hans Weber
    2. Fighting Phishing: Everything You Can Do to Fight Social Engineering and Phishing Roger A. Grimes
    3. Cybersecurity: Cybersecurity Essentials: Safeguarding Your Digital World Alex Foster
    4. Ultimate Kali Linux Book, Second Edition: Perform advanced penetration testing using Nmap, Metasploit, Aircrack-ng, and Empire Gllen D. Singh
    5. The Pentester BluePrint: Starting a Career as an Ethical Hacker Phillip L. Wylie
    6. The Ultimate Kali Linux Book - Second Edition: Perform advanced penetration testing using Nmap, Metasploit, Aircrack-ng, and Empire Glen D. Singh
    7. Ransomware Protection Playbook Roger A. Grimes
    8. Cybersecutity First Principles Rick Howard
    9. Cyber Smart: Five Habits to Protect Your Family, Money, and Identity from Cyber Criminals Bart R. McDonough
    10. CISSP Exam Study Guide For Information Security Professionals: Beginners Guide To Cybersecurity Threats, Ethical Hacking And Defense Techniques 3 Books In 1 John Knowles
    11. The Art of Deception: Controlling the Human Element of Security William L. Simon
    12. Social Engineering: The Science of Human Hacking 2nd Edition Christopher Hadnagy
    13. A Hacker's Mind: How the Powerful Bend Society's Rules, and How to Bend them Back Bruce Schneier
    14. Ethical Hacking for Beginners: HOW TO BUILD YOUR PEN TEST LAB FAST ATTILA KOVACS
    15. Hacking the Hacker: Learn From the Experts Who Take Down Hackers Roger A. Grimes
    16. Ethical Hacking Bible: Cybersecurity, Cryptography, Network Security, Wireless Technology and Wireless Hacking with Kali Linux | 7 books in 1 HUGO HOFFMAN
    17. Transit Lounge Sunil Mishra
    18. Hacking: How to Hack Alex Wagner
    19. Generative AI For Dummies Pam Baker
    20. Mastering AI for Healthcare Nilashis Roy
    21. Quit Everything: Interpreting Depression Franco Bifo Berardi
    22. OpenAI Developer's Handbook: Mastering Text, Images and Code Generation using OpenAI APIs for developing intelligent Apps Et Tu Code
    23. Gen AI, ChatGPT, OpenAI & GPT Store: Exploring the landscape of Generative AI: ChatGPT, OpenAI APIs and its GPT Store Et Tu Code
    24. ChatGPT for Nonfiction Authors: How AI Can Improve Your Writing Acquilia Awa
    25. Electronics All-in-One For Dummies, 3rd Edition Doug Lowe
    26. Prompt Engineering for Generative AI: Future-Proof Inputs for Reliable AI Outputs Mike Taylor
    27. Driven: The Race to Create the Autonomous Car Alex Davies
    28. Arguing with Idiots: How to Stop Small Minds and Big Government Glenn Beck
    29. The Buddhist on Death Row: How One Man Found Light in the Darkest Place David Sheff
    30. Python: - The Bible- 3 Manuscripts in 1 book: Python Programming for Beginners - Python Programming for Intermediates - Python Programming for Advanced Maurice J. Thompson
    31. Davos Man: How the Billionaires Devoured the World Peter S. Goodman
    32. Machinehood S.B. Divya
    33. Summary of Iain Foulds's Learn Azure in a Month of Lunches IRB Media
    34. Broken Places & Outer Spaces: Finding Creativity in the Unexpected Nnedi Okorafor
    35. Love Me, Don't Leave Me: Overcoming Fear of Abandonment and Building Lasting, Loving Relationships Michelle Skeen, PsyD
    36. Ghost in the Wires: My Adventures as the World’s Most Wanted Hacker Kevin Mitnick
    37. DBT For Dummies Blaise Aguirre, MD
    38. Most Likely to Succeed: Preparing Our Kids for the New Innovation Era Ted Dintersmith
    39. ACT Made Simple: An Easy-to-Read Primer on Acceptance and Commitment Therapy Russ Harris
    40. Who Owns the Future? Jaron Lanier
    41. Dedicated: The Case for Commitment in an Age of Infinite Browsing Pete Davis
    42. Talking to a Loved One with Borderline Personality Disorder: Communication Skills to Manage Intense Emotions, Set Boundaries, and Reduce Conflict Jerold J. Kreisman MD

    Vælg dit abonnement

    • Over 600.000 titler

    • Download og nyd titler offline

    • Eksklusive titler + Mofibo Originals

    • Børnevenligt miljø (Kids Mode)

    • Det er nemt at opsige når som helst

    Flex

    For dig som vil prøve Mofibo.

    89 kr. /måned
    • 1 konto

    • 20 timer/måned

    • Gem op til 100 ubrugte timer

    • Eksklusivt indhold hver uge

    • Fri lytning til podcasts

    • Ingen binding

    Prøv gratis
    Den mest populære

    Premium

    For dig som lytter og læser ofte.

    129 kr. /måned
    • 1 konto

    • 100 timer/måned

    • Eksklusivt indhold hver uge

    • Fri lytning til podcasts

    • Ingen binding

    Start tilbuddet

    Unlimited

    For dig som lytter og læser ubegrænset.

    149 kr. /måned
    • 1 konto

    • Ubegrænset adgang

    • Eksklusivt indhold hver uge

    • Fri lytning til podcasts

    • Ingen binding

    Start tilbuddet

    Family

    For dig som ønsker at dele historier med familien.

    Fra 179 kr. /måned
    • 2-6 konti

    • 100 timer/måned pr. konto

    • Fri lytning til podcasts

    • Kun 39 kr. pr. ekstra konto

    • Ingen binding

    2 konti

    179 kr. /måned
    Prøv gratis