Index

References to figures are in italics.

A

access/session tokens, identifying, 162164
account lockout, and username enumeration, 124
ACLs, 160
attacking, 168169
best practices, 200202
crawling, 161162
removing Everyone and Guest groups from Write and Execute ACLs, 110
setting, 108109
Active Scripting, 342343
ActiveX, 344
abusing , 343
countermeasures to attacks, 345
Acunetix Enterprise Web Vulnerability Scanner (WVS) 3.0, 443444
Ad-aware, 352
admin functions, insecure , 194
adware, 350353
AJAX, 8
ampersands, 227228
Anti-Phishing Working Group (APWG), 346
See also phishing
Apache
authorization, 200201
disabling web server extensions, 310311
hardening, 110115
securing WebDAV configuration on, 306307
Tomcat 5.5 directory listing DoS, 378
Apache Benchmark, 114115, 116
application profiling, 4041
documenting the application, 4143
application-layer DoS, 373375
ASEPs, 351352
ASP.NET, authorization, 204205
attacks
ACL, 168169
brute-force, 127, 182183
buffer overflow, 213215
canonicalization (dot-dot-slash), 215220
command execution, 226228
credential management, 152
dictionary, 126127, 182183
DISCO and WSDL disclosure attacks, 279281
eavesdropping and replay, 130134
encoding abuse, 228229
external entity attacks, 283285
file, path , and user disclosure, 312320
hacking ViewState, 323327
HTML injection, 220224
identifying, 103104
IIS HTR Chunked Encoding Heap Overflow, 309310
include file disclosure, 322323
injection attacks, 281283
manipulating application behavior, 225226
session fixation, 184185
session ID, 147
SQL injection and datastore attacks, 226
status page information leakage, 320321
timing, 124
user registration, 149151
XPath injection attacks, 285287
See also DoS attacks
authentication, 7
bypassing, 146152
CAPTCHAs, 129, 149151
Digest, 132134
digital certificates, 139
forms-based attacks, 134139
HTTP Basic, 130132
one-time passwords, 141142
PassMark/SiteKey, 140141
tools and techniques, 475
username/password threats, 122139
web authentication services, 142146
web services, 287288
See also passwords; username/password threats
authorization, 7, 160161
Apache, 200201
ASP.NET, 204205
Authorization Manager (AzMan), 204
best practices, 199206
capture/replay, 184
case studies, 185199
fingerprinting authz, 161168
horizontal privilege escalation, 186191
IIS, 201202
IP address, 201202
session fixation, 184185
session token security, 202205
token attacks, 170184
tools and techniques, 476
vertical privilege escalation, 191194
autostart extensibility points (ASEPs), 351352
AzMan, 204


Hacking Exposed Web Applications
HACKING EXPOSED WEB APPLICATIONS, 3rd Edition
ISBN: 0071740643
EAN: 2147483647
Year: 2006
Pages: 127

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net