|
Question |
Answer |
|
start learning
|
|
system(); StartProcess(); java. lang. Runtime exec()
|
|
|
|
start learning
|
|
via URL hhtps://... COLOR=http://evil...
|
|
|
|
start learning
|
|
' or 1=1 --; xp_cmdshell; exec master
|
|
|
|
start learning
|
|
%27 '; %3D =; union keyword
|
|
|
|
start learning
|
|
html tags, <script><IMG><INPUT>
|
|
|
|
start learning
|
|
|
|
|
|
start learning
|
|
|
|
|
XSS ways to attack/manipulate/bypass start learning
|
|
hex encoding, toggle case <SCRIPT>, double encoding, replaced keywords, whitespace manipulation
|
|
|
|
start learning
|
|
netstat -ab; many TIME_WAIT sent by single IP
|
|
|
|
start learning
|
|
limit length of input, hex encoding, custom error messages, disable XP_CMDSHELL, monitor traffic
|
|
|
Eradicating File Injection start learning
|
|
chroot jail, disable allow_url_open/include
|
|
|
Eradicating Command Injection start learning
|
|
input validation, safe API, input/output encoding
|
|
|
Eradaicating LDAP Injection start learning
|
|
LDAP filters, domain value validation, access control tight, dynamic testing and source code analysis
|
|
|
Eradicating: Broken authentication (1) start learning
|
|
use SSL, use MFA, no IDs in URL, password policy
|
|
|
Eradicating: Sensitive data exposure (2) start learning
|
|
data is encrypted, dont create or use weak algorithms, no caching for data that is sensitive, secure protocols
|
|
|
Eradicating: XML external entity attacks (3) start learning
|
|
no weakly configure XML parsers, XML unmarshaller, no DOC TYPE tag, input validation, avoid simple forms like JSON
|
|
|
Eradicating: Broken Access Control (4) start learning
|
|
check before redirect, limit file permissions, avoid client-side caching mechanisms, remove login tokens when logout
|
|
|
Eradicating: Security missconfigurations attacks (5) start learning
|
|
disable unused services, default accounts change/disable, use SSL, secure flag on sensitive cookiies, valid certificates
|
|
|
Eradicating: Insecure deserialization (7) start learning
|
|
validate input, avoid serialization, filter usntrased data
|
|
|
Eradicating: XSS attacks (6) start learning
|
|
rigorus validation of input, use testing tool during design, WAF to block malicious scripts, use HTML encoding, filter Meta characters, deplot PKI (PUBLIC)
|
|
|
Eradicating: due to Known Vulnerabilities (8) start learning
|
|
updates, monitor vulnerabilities, patch regulary, scan with security scanners, enforce best prtactices
|
|
|
Eradaicating: Insufficient logging and monitoring start learning
|
|
define scope of assets, minimum baseline for logging, proactive approach, prevent log injection attacks by sanitization, logs with user context
|
|
|
Eradicating: DoS attacks (10) start learning
|
|
deny external ICMP, limit length of input, block inbound traffic transmitted through service ports
|
|
|
