How to Break Web Software


	Download our Security Education Curriculum Guide

COURSE OVERVIEW

The web is the internet’s killer app, making web servers and services a prime target for hackers. In fact, 97% of all web applications are vulnerable. Why? Network security isn't the answer. And to compound the problem, Web applications typically employ specialized protocols and languages and suffer from unique problems – problems that very quickly and easily lead to vulnerabilities for the inexperienced and uninformed.

How to Break Web Software offers a definitive, hands-on approach to security-testing Web software. It describes and presents a model for web application testing as well as web application concerns including accountability, availability, confidentiality and integrity. This course goes well beyond the OWASP Top Ten and examines 19 specific web application attacks that can be applied to any web-based software to expose vulnerabilities. The focus of How to Break Web Software is how to test Web applications for common failures that can lead to exploitation. This course offers classic examples of malicious input, ways of bypassing validation and authorization checks, as well as problems inherited from certain configurations/languages/ architectures—all in a simple format that will show where to look for the problem, how to test for the problem and advice on methods of mitigation.

In this course, a web application security expert will address every category of Web software exploit: attacks on clients, servers, state, user inputs, and more. You’ll master powerful attack tools and techniques as you uncover dozens of crucial, widely exploited flaws in Web architecture and coding. The instructor will reveal how not to architect and code a Web application, where to look for potential threats and attack vectors, how to rigorously test for each of them, and how to mitigate the problems you find. Coverage includes:

Client vulnerabilities, including attacks on client-side validation
State-based attacks: hidden fields, CGI parameters, cookie poisoning, URL jumping, and session hijacking
Attacks on user-supplied inputs: cross-site scripting, SQL injection, and directory traversal
Language- and technology-based attacks: buffer overflows, canonicalization, and NULL string attacks
Server attacks: SQL Injection with stored procedures, command injection, and server fingerprinting
Cryptography, privacy, and attacks on Web services

Your Web software is mission-critical–it can’t be compromised. Whether you’re a developer, tester, QA specialist, or IT manager, this course will help you protect that software–systematically.

COURSE OUTLINE

Gathering information on the target

How web apps are built
Attack 1: Looking for information in HTML comments
Attack 2: Guessing filenames and directories
Attack 3: Vulnerabilities in example applications

I. Attacking the client

The need for a “rich” UI
Attack 4: Selections outside of ranges
Attack 5: Client side validation

II. Attacking State

Why state is important
Attack 6: Hidden fields
Attack 7: cgi parameters
Attack 8: cookies
Attack 8: Forceful browsing
Attack 9: session hijacking

III. Attacking Data

Attack 10: Cross-site scripting
Attack 11: SQL Injection
Attack 12: Directory traversal
Attack 13: Buffer overflows
Attack 14: Canonicalization
Attack 15: Null-string attacks

IV. Attacking the server

Attack 17: SQL injection II – stored procedures
Attack 18: Command injection
Attack 19: fingerprinting the server
Attack 20: Death by 1,000 cuts (DOS)
Attack 19: Fake cryptography
Attack 20: Breaking basic authentication
Attack 21: Cross Site Tracing

V. Web Services

Moving to web services
Common Attacks
Constraints on input and output
Attack 22: web services specific attacks

VI. Privacy

Who you are, where have you been
Methods for gathering data

VII. Tool support

A review of web security/vulnerability scanning tools
Introduction to HolodeckWeb

Hands-on lab attacking a site full of vulnerabilities

For more information, please contact please contact Sales at +1.978.694.1008 x24 or email