« previous next »
Pages: [1]   Go Down

Author Topic: Penetration Testing  (Read 542 times)

Offline Mayasen

  • Global Moderator
  • Sr. Member
  • *****
  • Posts: 189
  • Karma: +0/-0
  • Mayasen
    • View Profile
Penetration Testing
« on: September 07, 2010, 02:33:32 AM »
Penetration testing is a audit of system for Vulnerability. It is a kind of security testing. The main intension of penetration testing is to find the feasibility of attacks from malicious sources. The terms ethical hacking/hakers are most fluent in this kind of testing.

Different types to perform Penetration Testing are,

# SQL injection
# Cross Site Scripting
# Code and Content Injection
# Server Side Includes (SSI)
# Miscellaneous Injection
# Code Review
etc.
Logged
--
Mayasen

Offline twhitehouse

  • Sr. Member
  • ****
  • Posts: 77
  • Karma: +0/-0
    • View Profile
Re: Penetration Testing
« Reply #1 on: April 14, 2011, 01:23:28 PM »
Could we discuss further what each of these types of testing are.

Here is what I know of so far:

SQL injection - This is the process of using SQL queries to "inject" a query into a database / web site to make that site do something it would not normally do. 

Cross Site Scripting - From what I understand, this causes the browser to run some other code / file than it is expecting.  From what I have read, through cross site scripting, a web site could end up running SQL queries by reading them from this "other" file that the web site was directed to in the cross site script. 

The other ones mentioned here I do not know about yet.

Anyone have more information on these?
Logged
advertisement
Pages: [1]   Go Up
« previous next »