Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Tools to test softwares against any attacks for programmers? [closed]

Tags:

security

testing

fuzz-testing

in these days, i'm interested in software security. As i'm reading papers i see that there are many attacks and researchers are trying to invent new methods for softwares to get more secure systems.

this question can be a general including all types of attacks.There are many experienced programmers in SO, i just want to learn what are using to check your code against these attacks ? Is there any tools you use or you don't care ?

For example i heard about static/dynamic code analysis and fuzz testing.

  • SQL injection attacks
  • Cross Site Scripting
  • Bufferoverflow attacks
  • Logic errors
  • Any kind of Malwares
  • Covert Channels
  • ... ...

thanks

like image 792
berkay Avatar asked Jun 06 '10 15:06

berkay

1 Answers

I'm going to focus on web application security here...

Really you want to get used to manually trawling through a website/application and playing with various parameters etc. so proxy tools are of great help (they allow you to capture and interact with forms, before they reach the server):

LiveHTTPHeaders - FireFox plugin.
Burp Proxy - Java based.

Obviously there becomes a point where manually crawling a whole website becomes rather time consuming/tedious and this is where automated scanning tools can be of help.

Black box:

WebSecurify - not used it but it's been created by a well known web app security guy.
Skipfish - Google released this recently so it's probably worth a look.

And there are many other commercial tools: WhiteHat Sentinel, HP Web Inspect and probably many others I can't remember.

White box:

A lot of the academic research I've seen is related to static code analysis tools; I've not used any because they all focused on PHP only and had some limitations.

Other resources:

ha.ckers.org - great blog, with an active forum related to web app sec. OWASP - as perviously mentioned, there are lots of insightful articles/guides/tutorials here.

If you want to learn more about manually attacking sites yourself the Damn Vulnerable Web App is a nice learning project. By that I mean, it's a web application that is written to be deliberately insecure, so you can test your knowledge of web application security vulnerabilities legally.

I wrote a black box scanner in Perl for my third year dissertation which was quite an interesting project. If you wanted to build something yourself it really just consisted of:

  • crawler
  • parser
  • attacker
like image 83
Adam Taylor Avatar answered Sep 21 '22 01:09

Adam Taylor
Sign in to Comment

Related questions

Web based login using ssl public/private key?
Is using htmlspecialchars() sufficient in all situations?
How to acess jvm default KeyStore?
Isn't it unsafe to expose django media_url to everyone?
Where to store sensitive global information such as API keys in Android application?
Simple CSRF protection using nginx alone
How long should the lifetime of a CSRF token be?
Can someone give me some basic XSS and sql injection scripts? (not what it seems)
How to forbid framing
Hide Database Login Information in PHP Code
Why is `sudo` Slow When Password is Incorrect?
How to log someone trying to make sql injection
Mongodb security in node.js
how to identify ios device uniquely
Avoiding NavigatorUserMediaError "Only secure origins are allowed" on HTTP in Chrome
Auto login security with PHP, how and why [closed]
Docker Host Security - Can container run dangerous code or change host from inside of a container?
LINQ to Entities and SQL Injection
Is window.opener reliable?
How to set up Mercurial with ssl/security

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!