Book Image

Mastering Modern Web Penetration Testing

By : Prakhar Prasad, Rafay Baloch
Book Image

Mastering Modern Web Penetration Testing

By: Prakhar Prasad, Rafay Baloch

Overview of this book

Web penetration testing is a growing, fast-moving, and absolutely critical field in information security. This book executes modern web application attacks and utilises cutting-edge hacking techniques with an enhanced knowledge of web application security. We will cover web hacking techniques so you can explore the attack vectors during penetration tests. The book encompasses the latest technologies such as OAuth 2.0, Web API testing methodologies and XML vectors used by hackers. Some lesser discussed attack vectors such as RPO (relative path overwrite), DOM clobbering, PHP Object Injection and etc. has been covered in this book. We'll explain various old school techniques in depth such as XSS, CSRF, SQL Injection through the ever-dependable SQLMap and reconnaissance. Websites nowadays provide APIs to allow integration with third party applications, thereby exposing a lot of attack surface, we cover testing of these APIs using real-life examples. This pragmatic guide will be a great benefit and will help you prepare fully secure applications.

Related Content you might be interested in

Current Title:

Small book image
Mastering Modern Web Penetration Testing
Prakhar Prasad | Rafay Baloch
Oct, 2016 | 298 pages
No titles found
Table of Contents (18 chapters)
Mastering Modern Web Penetration Testing
Mastering Modern Web Penetration Testing
Credits
Credits
About the Author
About the Author
About the Reviewer
About the Reviewer
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Common Security Protocols
Common Security Protocols
SOP
CORS
URL encoding – percent encoding
Double encoding
Base64 encoding
Summary
2
Information Gathering
Information Gathering
Information gathering techniques
Enumerating Domains, Files, and Resources
Fierce
theHarvester
SubBrute
CeWL
DirBuster
WhatWeb
Shodan
DNSdumpster
Reverse IP Lookup – YouGetSignal
Pentest-Tools
Google Advanced Search
Summary
3
Cross-Site Scripting
Cross-Site Scripting
Reflected XSS
Stored XSS
Flash-based XSS – ExternalInterface.call()
HttpOnly and secure cookie flags
DOM-based XSS
XSS exploitation – The BeEF
Summary
4
Cross-Site Request Forgery
Cross-Site Request Forgery
Introducing CSRF
Exploiting POST-request based CSRF
How developers prevent CSRF?
PayPal's CSRF vulnerability to change phone numbers
Exploiting CSRF in JSON requests
Using XSS to steal anti-CSRF tokens
Exploring pseudo anti-CSRF tokens
Flash comes to the rescue
Summary
5
Exploiting SQL Injection
Exploiting SQL Injection
Installation of SQLMap under Kali Linux
Introduction to SQLMap
Dumping the data – in an error-based scenario
SQLMap and URL rewriting
Speeding up the process!
Dumping the data – in blind and time-based scenarios
Reading and writing files
Handling injections in a POST request
SQL injection inside a login-based portal
SQL shell
Command shell
Evasion – tamper scripts
Configuring with proxies
Summary
6
File Upload Vulnerabilities
File Upload Vulnerabilities
Introducing file upload vulnerability
Remote code execution
The return of XSS
Denial of Service
Bypassing upload protections
MIME content type verification bypass
Summary
7
Metasploit and Web
Metasploit and Web
Discovering Metasploit modules
Interacting with Msfconsole
Using Auxiliary Modules related to Web Applications
Understanding WMAP – Metasploit's Web Application Security Scanner
Generating Web backdoor payload with Metasploit
Summary
8
XML Attacks
XML Attacks
XML 101 – the basics
XXE attack
XML quadratic blowup
Summary
9
Emerging Attack Vectors
Emerging Attack Vectors
Server Side Request Forgery
Insecure Direct Object Reference
DOM clobbering
Relative Path Overwrite
UI redressing
PHP Object Injection
Summary
10
OAuth 2.0 Security
OAuth 2.0 Security
Introducing the OAuth 2.0 model
Receiving grants
Exploiting OAuth for fun and profit
Summary
11
API Testing Methodology
API Testing Methodology
Understanding REST APIs
Setting up the testing environment
Learning the API
Basic methodology to test developer APIs
Summary
Index
Index

About the Reviewer

Kubilay Onur Gungor has been working in the cyber security field for more than 8 years. He started his professional career with crypt analysis of encrypted images using chaotic logistic maps.

After working as a QA tester in the Netsparker project, he continued his career in the penetration testing field. He performed many penetration tests and consultancies for the IT infrastructure of many large clients, such as banks, government institutions, and telecommunication companies. After pen testing activities, he worked as a web application security expert and incident management and response expert in Sony Europe and Global Sony Electronics.

He believes in multidisciplinary approach on cyber security and defines it as a struggle. With this approach, he has developed his own unique certification and training program, including penetration testing, malware analysis, incident management and response, cyber terrorism, criminal profiling, unorthodox methods, perception management, and international relations. Currently, this certification program is up and running in Istanbul in the name of Cyber Struggle (https://cyberstruggle.org).

Besides security, he holds certificates in foreign policy, brand management, surviving in extreme conditions, international cyber conflicts, anti-terrorism accreditation board, terrorism and counter-terrorism comparing studies.

Previous Section
Next Chapter