7. Once you have ?¬? nished testing all of the pages on the web application, view
the report by selecting Reports | Current Test Results. The SecurityQA Toolbar
will then display all security issues found from the testing. Figure 1-2 shows
a sample injection report. Notice the iSEC Test Value section that shows the
speci?¬? c request and the speci?¬? c response in boldface type, which shows which
string triggered the injection ?¬‚ aw.
Figure 1-2 SQL/LDAP/XPATH Injection testing results from SecurityQA Toolbar
20 Hacking Exposed Web 2.0
SUMMARY
Injection attacks have been around for a long time and continue to be common among
many web applications. This type of attack allows attackers to perform actions on the
application server, from reading files to gaining complete control of the machine.
Injection attacks are heavily dependent on the technology used. First, identify the
technology used. Next, find all the possible user inputs for the web application. Finally,
attempt injections on all the users inputs.
21
2
Cross
Site
Scripting
22 Hacking Exposed Web 2.0
In this chapter, we discuss security controls in web browsers and how to circumvent
them with a common technique called cross-site scripting (XSS).
Pages:
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85