HACKING EXPOSED WEB APPLICATIONS, 3rd Edition

2017-07-07 02:10:07

References to figures are in italics.

A

access/session tokens, identifying, 162164

account lockout, and username enumeration, 124

ACLs, 160

attacking, 168169

best practices, 200202

crawling, 161162

removing Everyone and Guest groups from Write and Execute ACLs, 110

setting, 108109

Active Scripting, 342343

ActiveX, 344

abusing , 343

countermeasures to attacks, 345

Acunetix Enterprise Web Vulnerability Scanner (WVS) 3.0, 443444

Ad-aware, 352

admin functions, insecure , 194

adware, 350353

AJAX, 8

ampersands, 227228

Anti-Phishing Working Group (APWG), 346

See also phishing

Apache

authorization, 200201

disabling web server extensions, 310311

hardening, 110115

securing WebDAV configuration on, 306307

Tomcat 5.5 directory listing DoS, 378

Apache Benchmark, 114115, 116

application profiling, 4041

documenting the application, 4143

application-layer DoS, 373375

ASEPs, 351352

ASP.NET, authorization, 204205

attacks

ACL, 168169

brute-force, 127, 182183

buffer overflow, 213215

canonicalization (dot-dot-slash), 215220

command execution, 226228

credential management, 152

dictionary, 126127, 182183

DISCO and WSDL disclosure attacks, 279281

eavesdropping and replay, 130134

encoding abuse, 228229

external entity attacks, 283285

file, path , and user disclosure, 312320

hacking ViewState, 323327

HTML injection, 220224

identifying, 103104

IIS HTR Chunked Encoding Heap Overflow, 309310

include file disclosure, 322323

injection attacks, 281283

manipulating application behavior, 225226

session fixation, 184185

session ID, 147

SQL injection and datastore attacks, 226

status page information leakage, 320321

timing, 124

user registration, 149151

XPath injection attacks, 285287

See also DoS attacks

authentication, 7

bypassing, 146152

CAPTCHAs, 129, 149151

Digest, 132134

digital certificates, 139

forms-based attacks, 134139

HTTP Basic, 130132

one-time passwords, 141142

PassMark/SiteKey, 140141

tools and techniques, 475

username/password threats, 122139

web authentication services, 142146

web services, 287288

See also passwords; username/password threats

authorization, 7, 160161

Apache, 200201

ASP.NET, 204205

Authorization Manager (AzMan), 204

best practices, 199206

capture/replay, 184

case studies, 185199

fingerprinting authz, 161168

horizontal privilege escalation, 186191

IIS, 201202

IP address, 201202

session fixation, 184185

session token security, 202205

token attacks, 170184

tools and techniques, 476

vertical privilege escalation, 191194

autostart extensibility points (ASEPs), 351352

AzMan, 204

Категории

Search