owasp security testing

Pax. Mac Team Core member Site: http://conqu3r.paxmac.org/I. backgroundI recently wrote a document for my project and sorted out some testing methods in the Bank's classified protection. Many people think that terminal Hacking technology seems mysterious. In fact, I personally think that terminal Hacking technology relies mostly on luck. The Security Testing Proc

Are you still looking for a tool to complete your daily activities, or are you just looking for new tools that you can try to play? No need to worry, because today is your lucky day! Today, I will mention a variety of links, resources and editing tools that can be used for penetration testing, computer forensics, security, and hacking techniques.toolswatch.orgToolswatch.org is maintained by NJ Ouchn (@tools

principle" content, you will be very clear to understand these. Examples, methods and methods of attack on XSS are varied, and your scripting skills, along with your security knowledge, determine the depth of your understanding. By the way: You may not be an attack expert on XSS security weaknesses, but you can be a security

Digital Certificate and Its Application in Security Testing0x00 background To perform security tests on the Web layer, it is inevitable that a man-in-the-middle proxy will be used to capture packets for analysis. Common tools include BurpSuit, Fiddker, and Charles. The usage of these tools has been described on the Internet. I will not go into details here. However, when

Practical Web security testing training courses: I. Common Web Security Vulnerabilities 1. Hacker Technical Analysis 2. Introduction to common hacker tools 3. Common Web Attacks Ii. Web Security Vulnerability Detection 1. Http Security Test 2. url query string tampering, po

user name password input box, to see if support for third-party input method, generally recommended to use the soft keyboard in the application.Iv. Security of Accounts4.1, the password is stored in the background database, in the review and testing need to pay attention to the storage of passwords.4.2, password transmission is encrypted, testing we need to see

Once your wireless network is attacked, it will be easier to understand the Wi-Fi security vulnerability and the protective measures you should take. CIO. COM, a foreign website, introduced 15 free Wi-Fi security testing tools to help us find malicious access points, weak Wi-Fi passwords, and other security vulnerabili

0x01 scenario Hypothesis0x02 Chrome0x03 Firefox0x04 IE0x05 Conclusion-0x01 scenario HypothesisThree browser developer tool use and page debugging skills, this article does not describe, only said in the security test encountered the situation.Consider the following scenario: To do a security test for a Web application now, the client/server uses HTTPS bidirectional authentication, and the client uses a tool

When conducting a security penetration test, we first need to collect as much information as possible for the target application. Therefore, information collection is an essential step for penetration testing. This task can be completed in different ways,By using search engines, scanners, simple HTTP requests, or specially crafted requests, applications may leak information such as error information, versio

At present, the application of IP network routers is still very extensive, and the market demand is also very high, so I have studied the Security and equipment testing of IP network routers. Here I will share with you, I hope it will be useful to you. Today's era is the network era. The IP network routers that emerged at the end of the 20th century have created a miracle in the history of human science and

range of security threats and secure, unsecured communications, personal terminals, corporate networks, and carriers install or deploy a wide variety of security software and devices to protect against threats from hosts and networks or secure encrypted communications, including firewalls, ids,ips, spam gateways, Proxy servers, IPSec gateways, and SSL VPN gateways. However, the introduction of these devic