Closed

Security testing of Server and Website code

Security testing of Server and Website code

I am specifically talking about web servers, running Linux. I have always been curious of did hackers can get in the entry point. I mean the point of access. The way a hacker gets into the server and the website code.

Could I get an example of how a hacker would make an entry point into a webserver? Any C language is acceptable. I have absolutely no experience in hacking

A simple example would be appreciated.

• One legit and one malicious example

• Some examples require URL encoding to work

The thinks need to be test

SQL Injection

Cross Site Scripting (XSS)

Remote code execution

Command injection

Code injection

LDAP injection

Exploit (logs in without knowing admin password):

Path traversal

Exploit (fetches /etc/passwd):

Redirect/Forward attack

Exploit (Sends user from your page to evil page) :

Failure to Restrict URL Access

Cross-Site Request Forgery

Buffer overflow (technically by accessing an URL, but implemented with metasploit

The (currently) most common way in is through holes in PHP applications where we need to find out how secure they are!

Need fully screenshot or excel report

The best offer and quality samples will be appreciated

Skills: MySQL, PHP, Software Testing, Testing / QA, Website Testing

See more: security holes website, testing user, server scripting language, qa website testing, c code examples, best web server language, best code, test execution, sql injection test, how web servers work, hacker linux, best way to get out of work, best scripting language, c++ code examples, website security test, website qa, website hacking security, website hacker, web security hacker, Testing/ QA, testing testing/ qa, testing /qa, testing & qa, test sql server, security testing

About the Employer:
( 9 reviews ) Essex, United Kingdom

Project ID: #4596412