Security
  • IT Security Knowledge Base
  • Blue team
    • Linux System Hardening
    • Phishing Analysis
    • Snort
    • Yara
  • Capture the Flag
    • OverTheWire
      • Bandit
        • Bandit Level 0
        • Bandit Level 0 → Level 1
        • Bandit Level 1 → Level 2
        • Bandit Level 2 → Level 3
        • Bandit Level 3 → Level 4
        • Bandit Level 4 → Level 5
        • Bandit Level 5 → Level 6
        • Bandit Level 6 → Level 7
        • Bandit Level 7 → Level 8
        • Bandit Level 8 → Level 9
        • Bandit Level 9 → Level 10
        • Bandit Level 10 → Level 11
        • Bandit Level 11 → Level 12
        • Bandit Level 12 → Level 13
        • Bandit Level 13 → Level 14
        • Bandit Level 14 → Level 15
        • Bandit Level 15 → Level 16
        • Bandit Level 16 → Level 17
        • Bandit Level 17 → Level 18
        • Bandit Level 18 → Level 19
        • Bandit Level 19 → Level 20
        • Bandit Level 20→ Level 21
        • Bandit Level 21→ Level 22
        • Bandit Level 22 → Level 23
        • Bandit Level 23 → Level 24
        • Bandit Level 24 → Level 25
        • Bandit Level 25 → Level 26
        • Bandit Level 26 → Level 27
        • Bandit Level 27 → Level 28
        • Bandit Level 28 → Level 29
        • Bandit Level 29 → Level 30
        • Bandit Level 30 → Level 31
        • Bandit Level 31 → Level 32
        • Bandit Level 32 → Level 33
    • OWASP Juice Shop
      • Installation
      • Level 1 - Challenges
      • Level 2 - Challenges
    • TryHackMe Rooms
      • Anthem
      • Capture!
      • Corridor
      • Gotta Catch'em All!
      • Mustacchio
      • Neighbour
      • Opacity
      • Source
    • CEH v12 practical resources
  • Cryptology
    • CryptoHack
      • Course: Introduction to CryptoHack
        • Introduction - Challenges
        • General - Encoding
        • General - XOR
      • Course: Modular Arithmetic
        • General - Mathematics
        • Mathematics - Modular Math
        • Mathematics - Brainteasers Part 1
      • Course: Symmetric Cryptography
        • How AES Works
        • Symmetric Starter
        • Block Ciphers
        • Stream Ciphers
  • Red Team
    • Reconnaissance
      • Foot-printing
      • Scanning (Nmap)
      • Enumeration
    • Vulnerability Analysis
    • Initial Access
      • Obtaining credentials
      • Vulnerability Exploitation
        • Buffer Overflow
        • Metasploit and Armitage
        • Ninja Jonin
    • Active Directory
      • Connect to AD
      • AD Explore
      • CMD and PowerShell enumeration
      • Certificates in AD
      • LDAP Pass-back Attacks
      • Cracking NetNTLM Challenge with Responder
      • Exploring Configuration Files for AD Credentials
      • Pass the hash with evil WinRM
      • Understanding Runas
    • Malware
    • Sniffing
      • Intercept HTTP traffic - Hetty
      • Intercept HTTP traffic - Bettercap
      • Wireshark
    • Social Engineering
    • Denial of Service
    • Web Hacking
      • Burp Suite
      • OWASP ZAP
      • Web servers
      • Web Server Footprinting
      • Directory Enumeration
      • Session Hijacking
      • Web Shells
      • Web vulnerability scanners
      • SQL Injection
    • Cloud
    • Wireless Networks
      • Attacking WEP
      • Attacking WPA/WPA2
    • Mobile Devices
    • Network Security Evasion
    • Privileges Escalation
    • Maintain Access and Hide Malicious Activity
      • Backdooring
    • Cover your Tracks
  • Internet of Things
    • IoT in general
    • Common IoT Protocols
      • CoAP
      • MQTT
      • ZIGBEE
      • Bluetooth
    • Scapy
      • Sniffing and spoofing
      • ARP cache Poisoning
  • Projects
    • Cybersecurity Roadshow
Powered by GitBook
On this page
  1. Red Team

Web Hacking

Web hacking is a vast and complex topic, so this section is split into multiple sections.

PreviousDenial of ServiceNextBurp Suite

Last updated 1 year ago

However, we cannot talk about web hacking without mention OWASP Top 10.

"The is a standard awareness document for developers and web application security. It represents a broad consensus about the most critical security risks to web applications."

I have a on under "Capture The Flag" on the OWASP Juice Shop, showcasing various common web vulnerabilities found in the OWASP Top 10.

Vulnerability
Description
Example

Broken Access Control

Failure to enforce proper access restrictions, allowing unauthorized users to access certain functionality or data in a web application.

In a banking application, an unauthorized regular customer can access the admin panel, potentially compromising sensitive financial data.

Cryptographic Failures

Weaknesses in encryption and hashing mechanisms used to protect sensitive data in a web application, potentially leading to data leakage.

An e-commerce website employs outdated encryption algorithms, enabling attackers to intercept and decrypt payment data during transmission.

Injection

Exploitation of untrusted data that is improperly processed and executed as code within a web application, such as SQL or script injection.

A poorly secured web application allows an attacker to submit malicious SQL code in an input field, leading to unauthorized access and data breaches.

Insecure Design

Vulnerabilities in the fundamental architecture and design of a web application that can lead to security breaches.

A social media platform's flawed design allows users to manipulate URLs and access each other's private content, violating user privacy.

Security Misconfiguration

Vulnerabilities arising from improper configuration of web applications, servers, or databases, exposing weaknesses.

An incorrectly configured web server displays detailed error messages, revealing system information and making it susceptible to targeted attacks.

Vulnerable and Outdated Components

Vulnerabilities resulting from outdated components like libraries or plugins in web applications.

An outdated plugin in a content management system (CMS) allows attackers to gain unauthorized access to the CMS, risking the entire website's security.

Identification and Authentication Failures

Vulnerabilities arising from inadequately verifying user identities and managing authentication, potentially leading to unauthorized access.

Weak or missing authentication controls in a web application enable unauthorized users to access sensitive data and perform actions reserved for authenticated users.

Software and Data Integrity Failures

Vulnerabilities resulting from failures to ensure the integrity of software and data, which may lead to malicious alterations or unauthorized access.

Lack of data integrity checks allows attackers to alter sensitive data in a web application, potentially leading to data tampering or breaches.

Security Logging and Monitoring Failures

Vulnerabilities linked to inadequate security logging and monitoring, making it difficult to detect and respond to security incidents.

Failing to log and monitor security events in a web system may result in missed critical alerts and security breaches, leading to delayed responses.

Server-Side Request Forgery

A vulnerability where an attacker tricks a web application into making unintended and unauthorized requests to internal resources.

Forcing a web application to access internal resources can lead to data exposure, service disruption, and potentially compromise sensitive information.

OWASP Top 10
section