Security Testing a Website

Question

I am currently working on a school assignment which requires us to perform security testing on a website created by one of our peers. The website is created using ASP.Net 3.5/4 and an MS-SQL database.

The website's main features are:

• Registration & Login using Roles
• Uploading documents
• Sharing of uploaded documents
• Leaving comments on shared documents

I already have started testing the website using:

• XSS in the Register, Login and Leave Comment Sections
• SQL Injection in the Register and Login pages
• Upload of executables, with a different extension (I have changed an executable file to .doc to test whether the system is checking the extension of the file or the actual contents)

These tests have been carried out manually and I have access to the source code!

Can you suggest any other tests I might want to carry out?

Cheers

Answer 1

A good resource for things to lock-down would be OWASP - I linked to their "top ten" items as I have followed it myself for locking down apps and found it really helpful.

Drilling down into any item on their top ten list will discuss how to recognize a particular vulnerability and suggest how to remove the vulnerability. All code-agnostic stuff, high-level descriptions so it can be applied to any project be it .Net, Ruby, PHP, etc.