Web Hacking 101
Why spend all your time corrupting and controlling memory when you can type some text into your browser and get access to your target's data? The growing complexity of web applications, the increasing data stored behind them, and the low awareness and understanding of web security vulnerabilities are creating a situation that is well-suited for exploitation. Joe Hemler will explain some of the most common vulnerabilities in web applications in this video.
[homework to be filled in soon]
One last thing: The InfoSec industry likes to make up a lot of terms and there are a surplus of attention-grabbing folks who try and coin terms. Somebody made up this whole "Type 0", "Type 1", etc., naming scheme for XSS and placed it in Wikipedia. Nobody in the industry uses these terms and you'll likely be ridiculed if you use them. My personal preference is "Transient" and "Persistent" for the two types we discussed in the video. XSS != Diabetes.
Reading Material
- RFC 2616 (the short version)
- Edward Z. Yang - Intro to Web Application Security, MIT IAP 2009
- OWASP Top 10, OWASP AppSec FAQ, OWASP Testing Guide
- A Study in Scarlet - Exploiting Common Vulnerabilities in PHP Applications, Shaun Clowes
- SQL Injection Cheatsheet, Oracle SQL Injection Cheatsheet - Ferruh Mavituna
- Advanced SQL Injection - Chris Anley
- Burp Suite - you'll need this for the homework
8 CommentsWeb Hacking 102
Reading Material
- Chris Eng - Cryptography for Penetration Testers (slides)
- Cross Application Scripting and URI Exploitation (the most insane thing I've seen done with XSS)
- Nate Lawson - When Crypto Attacks
- Beware of Finer-Grained Origins
- Do's and Don'ts of Client Authentication on the Web
- Gotham Digital Science Blog
