Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Vulnerability testing in ASP.NET MVC

Tags:

unit-testing

asp.net-mvc

asp.net-web-api

I have been involved in test based development on ASP.NET MVC and ASP.NET WebAPI using NMock unit test, however most of the unit tests that I write revolve around testing functionality.

From the point of view of Unit Testing :

Are there any frameworks to test vulnerability of access points Actions on Controllers (or any other components)

From the point of view automated/manual QA testing

Are there any (prefer open source) tools for testing vulnerability of a website built on ASP.NET MVC , manual or automatic , which can be used for Quality Assurance ?

like image 879
frictionlesspulley Avatar asked May 12 '13 23:05

frictionlesspulley

People also ask

What is vulnerability testing with example?

A vulnerability assessment is a systematic review of security weaknesses in an information system. It evaluates if the system is susceptible to any known vulnerabilities, assigns severity levels to those vulnerabilities, and recommends remediation or mitigation, if and whenever needed.

Can MVC ensure security?

MVC provides a lot of infrastructure support for Forms Authentication. Forms authentication is highly customizable, you can customize everything from the sign in form, to where the credentials are stored and how those credentials are validated. Forms Authentication in ASP.NET relies on cookies by default.

2 Answers

I would go about testing your ASP.NET MVC application in the same manner as I would test any other web application built on any other platform.

Essentially your attack vectors are the web pages and server(s) hosting the application. Think about it from an attackers point of view. They have no way to see the code in your controllers and models but they can do the following.

  • Scan your server(s) for OS version , web server version, db version that may contain vulnerabilities.
  • Scan your webpages for vulnerable JavaScript, input forms, query string parameters, etc.
  • Attempt to exploit your web application through any discovered vulnerabilities

You can use any number of applications to test your site for xss, csrf, sql injection, etc. A good place to start is OWASP https://www.owasp.org/index.php/Main_Page Get familiar with top 10 https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project

Also check out this SO post regarding open source web vulnerabilities scanners https://stackoverflow.com/questions/2995143/open-source-web-site-vulnerability-scanners

Remember that the two main attack vectors will be user input and server configuration.

I would also recommend taking a look at NMap and MetaSploit. Nmap can be used for finding open ports on a server and MetaSploit is a framework for exploiting vulnerabilities.

like image 141
user2353007 Avatar answered Sep 22 '22 17:09

user2353007

Well one the biggest areas that you should look at is the ModelBinding, since that usually creates massive vulnerabilities.

For example take a look at this question and see if you can spot the vulnerability:

  • Security vulnerability created by ASP.NET MVC ModelBinder (SO Question)
  • Can you spot the security implications/vulnerability of a small change to an ASP.NET MVC 3.0+ Model Binder?
like image 33
Dinis Cruz Avatar answered Sep 23 '22 17:09

Dinis Cruz
Sign in to Comment

Related questions

Can an AuthorizationAttribute prevent an action from being executed entirely?
How to have a custom 404 and 500 error pages with a stock standard ASP.NET MVC3 website?
How can I make accessing my custom IPrincipal easier in ASP.NET MVC?
Would it be better to use Asp.net mvc or web services?
MemoryCache empty just after adding an object
Rendering Nullable Bool as CheckBox
ASP.NET MVC 4 Dev Preview Razor in Sections Error
How do I manually populate ViewModel (Not using AutoMapper!)
Recommended practices for Versioning WebAPI interfaces
CanCan gem for MVC .NET
AntiForgeryToken changes per request
ASP.Net MVC 3/4 Hosted on IIS 7.5 Default Handler Mappings
ASP.Net Web Api + KnockoutJs + MVC4 - Tying it together
Stored procedures in SQL Server master-child relationships not tables
Compiler executable file csc.exe cannot be found in .NET 4.5 Azure deployment
ASP.Net WebApi: How to load additional controllers at runtime
Is hardcoding controller, view and action names in MVC good practice?
Why is .Net MVC architecture so overcomplicated vs Rails? [closed]
Custom AuthorizeAttribute Not Called by MVC Framework
File Upload not Rendering Text Properly in Modal

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!