Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Web Penetration Testing with Kali Linux 2.0, Second Edition
  • Table Of Contents Toc
  • Feedback & Rating feedback
Web Penetration Testing with Kali Linux 2.0, Second Edition

Web Penetration Testing with Kali Linux 2.0, Second Edition

By : Juned Ahmed Ansari
4 (6)
Buy this Book
close
close
Web Penetration Testing with Kali Linux 2.0, Second Edition

Web Penetration Testing with Kali Linux 2.0, Second Edition

4 (6)
By: Juned Ahmed Ansari
Buy this Book

Overview of this book

Kali Linux 2.0 is the new generation of the industry-leading BackTrack Linux penetration testing and security auditing Linux distribution. It contains several hundred tools aimed at various information security tasks such as penetration testing, forensics, and reverse engineering. At the beginning of the book, you will be introduced to the concepts of hacking and penetration testing and will get to know about the tools used in Kali Linux 2.0 that relate to web application hacking. Then, you will gain a deep understanding of SQL and command injection flaws and ways to exploit the flaws. Moving on, you will get to know more about scripting and input validation flaws, AJAX, and the security issues related to AJAX. At the end of the book, you will use an automated technique called fuzzing to be able to identify flaws in a web application. Finally, you will understand the web application vulnerabilities and the ways in which they can be exploited using the tools in Kali Linux 2.0.
Table of Contents (12 chapters)
close
close
close
Preface
Icon
Preface
Icon
What this book covers
Icon
What you need for this book
Icon
Who this book is for
Icon
Conventions
Icon
Reader feedback
Icon
Customer support
Free Chapter
1
1. Introduction to Penetration Testing and Web Applications
chevron up
Icon
1. Introduction to Penetration Testing and Web Applications
Icon
Proactive security testing
Icon
Rules of engagement
Icon
The limitations of penetration testing
Icon
The need for testing web applications
Icon
Social engineering attacks
Icon
A web application overview for penetration testers
Icon
Summary
2
2. Setting up Your Lab with Kali Linux
Icon
2. Setting up Your Lab with Kali Linux
Icon
Kali Linux
Icon
Important tools in Kali Linux
Icon
Using Tor for penetration testing
Icon
Summary
3
3. Reconnaissance and Profiling the Web Server
Icon
3. Reconnaissance and Profiling the Web Server
Icon
Reconnaissance
Icon
Scanning – probing the target
Icon
Summary
4
4. Major Flaws in Web Applications
Icon
4. Major Flaws in Web Applications
Icon
Information leakage
Icon
Authentication issues
Icon
Path traversal
Icon
Injection-based flaws
Icon
Cross-site scripting
Icon
Cross-site request forgery
Icon
Session-based flaws
Icon
File inclusion vulnerability
Icon
HTTP parameter pollution
Icon
HTTP response splitting
Icon
Summary
5
5. Attacking the Server Using Injection-based Flaws
Icon
5. Attacking the Server Using Injection-based Flaws
Icon
Command injection
Icon
SQL injection
Icon
Summary
6
6. Exploiting Clients Using XSS and CSRF Flaws
Icon
6. Exploiting Clients Using XSS and CSRF Flaws
Icon
The origin of cross-site scripting
Icon
An overview of cross-site scripting
Icon
Types of cross-site scripting
Icon
XSS and JavaScript – a deadly combination
Icon
Scanning for XSS flaws
Icon
Cross-site request forgery
Icon
Summary
7
7. Attacking SSL-based Websites
Icon
7. Attacking SSL-based Websites
Icon
Secure socket layer
Icon
Summary
8
8. Exploiting the Client Using Attack Frameworks
Icon
8. Exploiting the Client Using Attack Frameworks
Icon
Social engineering attacks
Icon
Social engineering toolkit
Icon
Spear-phishing attack
Icon
Website attack
Icon
Browser exploitation framework
Icon
Summary
9
9. AJAX and Web Services – Security Issues
Icon
9. AJAX and Web Services – Security Issues
Icon
Introduction to AJAX
Icon
Web services
Icon
Summary
10
10. Fuzzing Web Applications
Icon
10. Fuzzing Web Applications
Icon
Fuzzing basics
Icon
Types of fuzzing techniques
Icon
Summary
11
Index
Icon
Index

Social engineering attacks

The efforts that you put in to securing your computer devices using network firewalls, IPS, and web application firewalls are of little use if your employees easily fall prey to a social engineering attack. Security in computer systems is as strong as the weakest link and it only takes one successful social engineering attack on employees to bring an entire business down. Social engineering attacks can be accomplished using various means such as:

  • E-mail spoofing: Employees need to be educated to differentiate between legitimate e-mails and spoofed e-mails. Before clicking on any external links on e-mails, the links should be verified. Links in the e-mail have been favorite method to execute a cross-site scripting attack. When you click on the Reply button, the e-mail address in the To field should be the one that the mail came from and should be from a domain that looks exactly the same as the one that you were expecting the mail from. For example, [email protected] and [email protected] are entirely different e-mail accounts.
  • Telephone attacks: Never reveal any personal details on telephone. Credit card companies and banks regularly advice their customers the same and emphasize that none of their employees have been authorized to collect personal information such as username and password from customers.
  • Dumpster diving: Looking for information in the form of documents or flash drives left by users is known as dumpster diving. A logical design document that a user failed to collect from the printer, which contains detailed design of a web application, including the database server, IP addresses, and firewall rules, would be of great use to an attacker. The attacker now has access to the entire architecture of the web application and would be able to directly move to the exploitation phase of the attack. Clean desk policy should be implemented organization wide.
  • Malicious USB drives: Unclaimed USB drives left at a desk can increase the curiosity of the user who would waste no time in checking out the contents of the USB drive by plugging it into his computer. A USB drive sent as a gift would also trick the user. These USB drives can be loaded with malicious backdoors that connect back to the attackers machine.

Employees at every level in the organization, from a help desk representative to the CEO of the company, are prone to social engineering attacks. Each employee should be held accountable to maintain the integrity of the information that they are responsible for.

An attack on a big fish in an organization such as a CEO, CFO, or CISO is known as whaling. A successful attack on people holding these positions bring in great value, as they have access to the most sensitive data in the organization.

Training employees to defeat social engineering attacks

Regular training and employee awareness programs are the most efficient way to thwart social engineering attacks. Employees at every level need a separate level of training, which would depend on what data they deal with and the type of interaction they have with the end clients. IT helpdesk personnel who have direct interaction with end users need specific training on ways to respond to queries on the telephone. Marketing and sales representatives, who interact with people outside the organization, receive a large number of e-mails daily, and spend a good amount of time on the Internet, need special instructions and guidelines to avoid falling in the trap of spoofed e-mails. Employees should also be advised against sharing corporate information on social networks and only those approved by the senior management should do it. Using official e-mail addresses when creating accounts on online forums should be strongly discouraged, as it becomes one of the biggest sources of spam e-mails.

End of Section 6
Next Section

Create a Note

Modal Close icon
You need to login to use this feature.
notes
bookmark search playlist font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Delete Note

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Edit Note

Modal Close icon
Write a note (max 255 characters)
Cancel
Update Note

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY