Learn web penetration testing
PentesterLab is an easy and great way to learn penetration testing.
PentesterLab provides vulnerable systems that can be used to test and understand vulnerabilities.
Pentesterlab.com provides multiple kinds of vulnerable system images ( linux based ) that can be used to practise penetration testing. Each system is based on a different set of vulnerability and is a separate exercise. Check out the available exercises.
Each exercise comes with an iso image of the system in both 32 and 64 bits, along with a pdf manual which provides help and hints on how to go about doing penetration testing on the systems.
Exercise - Web for Pentester
For example one of the exercise is called "Web for Pentester" and it teaches the following things
What you will learn?
Basics of Web
Basics of HTTP
Detection of common web vulnerabilities:
Cross-Site Scripting
SQL injections
Directory traversal
Command injection
Code injection
XML attacks
LDAP attacks
File upload
Basics of fingerprinting
All you need is a virtualisation software like virtualbox. Install the system image on virtual box and start practising right away.
I tried this exercise called "Web...
Read full post here
Pentesterlab.com – Learn Web Penetration Testing The Right Way
PentesterLab is an easy and great way to learn penetration testing.
PentesterLab provides vulnerable systems that can be used to test and understand vulnerabilities.
Pentesterlab.com provides multiple kinds of vulnerable system images ( linux based ) that can be used to practise penetration testing. Each system is based on a different set of vulnerability and is a separate exercise. Check out the available exercises.
Each exercise comes with an iso image of the system in both 32 and 64 bits, along with a pdf manual which provides help and hints on how to go about doing penetration testing on the systems.
Exercise - Web for Pentester
For example one of the exercise is called "Web for Pentester" and it teaches the following things
What you will learn?
Basics of Web
Basics of HTTP
Detection of common web vulnerabilities:
Cross-Site Scripting
SQL injections
Directory traversal
Command injection
Code injection
XML attacks
LDAP attacks
File upload
Basics of fingerprinting
All you need is a virtualisation software like virtualbox. Install the system image on virtual box and start practising right away.
I tried this exercise called "Web...
Read full post here
Pentesterlab.com – Learn Web Penetration Testing The Right Way