SI Secure
SI Secure
IndustriesServicesProductsCompanyLibrary
SI Services


How to Break Web Software

Download our Security Education Curriculum Guide

COURSE OVERVIEW

The web is the internet’s killer app, making web servers and services a prime target for hackers. In fact, 97% of all web applications are vulnerable. Why? Network security isn't the answer. And to compound the problem, Web applications typically employ specialized protocols and languages and suffer from unique problems – problems that very quickly and easily lead to vulnerabilities for the inexperienced and uninformed.

How to Break Web Software offers a definitive, hands-on approach to security-testing Web software.  It describes and presents a model for web application testing as well as web application concerns including accountability, availability, confidentiality and integrity. This course goes well beyond the OWASP Top Ten and examines 19 specific web application attacks that can be applied to any web-based software to expose vulnerabilities. The focus of How to Break Web Software is how to test Web applications for common failures that can lead to exploitation. This course offers classic examples of malicious input, ways of bypassing validation and authorization checks, as well as problems inherited from certain configurations/languages/ architectures—all in a simple format that will show where to look for the problem, how to test for the problem and advice on methods of mitigation. 

In this course, a web application security expert will address every category of Web software exploit: attacks on clients, servers, state, user inputs, and more. You’ll master powerful attack tools and techniques as you uncover dozens of crucial, widely exploited flaws in Web architecture and coding. The instructor will reveal how not to architect and code a Web application, where to look for potential threats and attack vectors, how to rigorously test for each of them, and how to mitigate the problems you find. Coverage includes:

  • Client vulnerabilities, including attacks on client-side validation

  • State-based attacks: hidden fields, CGI parameters, cookie poisoning, URL jumping, and session hijacking

  • Attacks on user-supplied inputs: cross-site scripting, SQL injection, and directory traversal

  • Language- and technology-based attacks: buffer overflows, canonicalization, and NULL string attacks

  • Server attacks: SQL Injection with stored procedures, command injection, and server fingerprinting

  • Cryptography, privacy, and attacks on Web services

Your Web software is mission-critical–it can’t be compromised. Whether you’re a developer, tester, QA specialist, or IT manager, this course will help you protect that software–systematically.

COURSE OUTLINE

Gathering information on the target

  • How web apps are built
  • Attack 1: Looking for information in HTML comments
  • Attack 2: Guessing filenames and directories
  • Attack 3: Vulnerabilities in example applications

I.  Attacking the client

  • The need for a “rich” UI
  • Attack 4: Selections outside of ranges
  • Attack 5: Client side validation

II.  Attacking State

  • Why state is important
  • Attack 6: Hidden fields
  • Attack 7: cgi parameters
  • Attack 8: cookies
  • Attack 8: Forceful browsing
  • Attack 9: session hijacking

III.  Attacking Data

  • Attack 10: Cross-site scripting
  • Attack 11: SQL Injection
  • Attack 12: Directory traversal
  • Attack 13: Buffer overflows
  • Attack 14: Canonicalization
  • Attack 15: Null-string attacks

IV.  Attacking the server

  • Attack 17: SQL injection II – stored procedures
  • Attack 18: Command injection
  • Attack 19: fingerprinting the server
  • Attack 20: Death by 1,000 cuts (DOS)
  • Attack 19: Fake cryptography
  • Attack 20: Breaking basic authentication
  • Attack 21: Cross Site Tracing

V.  Web Services

  • Moving to web services
  • Common Attacks
  • Constraints on input and output
  • Attack 22: web services specific attacks

VI.  Privacy

  • Who you are, where have you been
  • Methods for gathering data

VII.  Tool support

  • A review of web security/vulnerability scanning tools
  • Introduction to HolodeckWeb

Hands-on lab attacking a site full of vulnerabilities
 

For more information, please contact please contact Sales at +1.978.694.1008 x24 or email


back to the top of the page