tailieunhanh - Bài 10: Hacking Web Servers

Collection Information Describe Web applications Explain Web application vulnerabilities Describe the tools used to attack Web servers. | Lesson 10 Hacking Web Servers Collection Information Describe Web applications Explain Web application vulnerabilities Describe the tools used to attack Web servers Hands-On Ethical Hacking and Network Defense Hands-On Ethical Hacking and Network Defense It is nearly impossible to write a program without bugs Some bugs create security vulnerabilities Web applications also have bugs Web applications have a larger user base than standalone applications Bugs are a bigger problem for Web applications Static Web pages Created using HTML Dynamic Web pages Need special components tags Common Gateway Interface (CGI) Active Server Pages (ASP) PHP ColdFusion Scripting languages Database connectors Use the element or tag in an HTML document Allows customer to submit information to the Web server Web servers process information from a Web form by using a Web application Easy way for attackers to intercept data that users submit to a Web server Web form example Enter your username: Enter your password: Handles moving data from a Web server to a Web browser The majority of dynamic Web pages are created with CGI and scripting languages Describes how a Web server passes data to a Web browser Relies on Perl or another scripting language to create dynamic Web pages CGI programs can be written in different programming and scripting languages CGI example Written in Perl Should be placed in the cgi-bin directory on the Web server #!/usr/bin/perl print "Content-type: text/html\n\n"; print "Hello Security Testers!"; With ASP, developers can display HTML documents to users on the fly Main difference from pure HTML pages When a user requests a Web page, one is created at that time ASP uses scripting languages such as JScript or VBScript Not all Web servers support ASP . | Lesson 10 Hacking Web Servers Collection Information Describe Web applications Explain Web application vulnerabilities Describe the tools used to attack Web servers Hands-On Ethical Hacking and Network Defense Hands-On Ethical Hacking and Network Defense It is nearly impossible to write a program without bugs Some bugs create security vulnerabilities Web applications also have bugs Web applications have a larger user base than standalone applications Bugs are a bigger problem for Web applications Static Web pages Created using HTML Dynamic Web pages Need special components tags Common Gateway Interface (CGI) Active Server Pages (ASP) PHP ColdFusion Scripting languages Database connectors Use the element or tag in an HTML document Allows customer to submit information to the Web server Web servers process information from a Web form by using a Web application Easy way for attackers to intercept data that users submit to a Web server

TỪ KHÓA LIÊN QUAN