Menu
I want to make sure my site is protected against hacking attempts and I think the best way to test is to try and hack my site myself. What sort of things do hackers do to try and hack my site?
E.g.,
Test - they might put javascript in a input field e.g.,
<“open javascript tag">window.location = “www.somewhereelse.com”;<“end javascript tag”>
Protection - Use php htmlentities function before displaying data.
What other things can I test against to make sure my site is safe?
905
Penetration testing is a specific type of ethical hacking that involves hiring a certified professional to asses the strengths of a preexisting system. Usually, pen testers are given privileged information and use it to find exploitable flaws.
Dynamic Analysis (Penetration Testing) Penetration testing, or a pen test, is a software testing technique that uses controlled cyber-attacks to target a running system to determine vulnerabilities that could be exploited by attackers.
A tester essentially does need to have a comprehensive knowledge of everything rather required to have the knowledge of only the specific area for which he conducts pen testing. An ethical hacker essentially needs to have a comprehensive knowledge of software programming as well as hardware.
You will find an extensive list of attacks here: https://www.owasp.org/index.php/Category:Attack
84
The best choice is to use a vulnerability scanner. I can recommend Acunetix, on Windows, nikto2 - cross platform and free, nessus - i would say the leader.
34
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
