.

OWASP 2013 top 10 application security attacks using BackTrack 5 - Help Needed!!

<<

SUdoctstudent

Recruiters
Recruiters

Posts: 8

Joined: Wed Mar 13, 2013 7:19 am

Post Thu Apr 25, 2013 7:21 am

OWASP 2013 top 10 application security attacks using BackTrack 5 - Help Needed!!

Hello all -

I'm new to ethical hacking and I wanted to see if I could obtain some specific commands/procedures using the BackTrack 5 tool in order to perform the OWASP 2013 top 10 application security attacks against a wireless grid. I've been reviewing youtube, BackTrack tutorial sites/beginners guides, etc. but if someone has a list of commands or some additional information that could help me perform these types of attacks against a web application in a wireless grid network, I would greatly appreciate it!! Thank you in advance.
Last edited by SUdoctstudent on Thu Apr 25, 2013 7:23 am, edited 1 time in total.
<<

cd1zz

User avatar

Recruiters
Recruiters

Posts: 566

Joined: Sun Oct 03, 2010 9:01 pm

Post Thu Apr 25, 2013 8:34 am

Re: OWASP 2013 top 10 application security attacks using BackTrack 5 - Help Needed!!

First of all, "Backtrack" has a million tools on it, you need to know which tool to use for the task at hand. Otherwise its like trying to screw in a bolt with a tool box.

For OWASP, the likely tool to begin with is Burp. The "wireless grid" has no impact on OWASP, that is simply the network medium.

You can start here: http://www.securityninja.co.uk/hacking/ ... uder-tool/

You cant just "run commands" an expect magic to happen. Web apps are usually custom written, so you need to know what you're looking for and subsequently plan your next steps. Learn about what each of the top 10 really mean.

Go read this book cover to cover: http://www.amazon.com/The-Web-Applicati ... s+handbook
<<

SUdoctstudent

Recruiters
Recruiters

Posts: 8

Joined: Wed Mar 13, 2013 7:19 am

Post Thu Apr 25, 2013 8:51 am

Re: OWASP 2013 top 10 application security attacks using BackTrack 5 - Help Needed!!

Thanks and I appreciate it!
<<

Jamie.R

User avatar

Sr. Member
Sr. Member

Posts: 435

Joined: Mon Aug 06, 2012 9:57 am

Location: UK

Post Thu Apr 25, 2013 10:23 am

Re: OWASP 2013 top 10 application security attacks using BackTrack 5 - Help Needed!!

also most will give you information using -h or --help if its a command line too.
| OSWP | eCPPT Silver and Gold | eWPT |

I'm an InterN0T'er
<<

SUdoctstudent

Recruiters
Recruiters

Posts: 8

Joined: Wed Mar 13, 2013 7:19 am

Post Thu Apr 25, 2013 12:09 pm

Re: OWASP 2013 top 10 application security attacks using BackTrack 5 - Help Needed!!

Appreciate that and thank you as well!
<<

dynamik

Recruiters
Recruiters

Posts: 1119

Joined: Sun Nov 09, 2008 11:00 am

Location: Mile High City

Post Thu Apr 25, 2013 12:32 pm

Re: OWASP 2013 top 10 application security attacks using BackTrack 5 - Help Needed!!

Work through the Mutillidae videos: http://www.irongeek.com/i.php?page=vide ... mutillidae
The day you stop learning is the day you start becoming obsolete.
<<

SUdoctstudent

Recruiters
Recruiters

Posts: 8

Joined: Wed Mar 13, 2013 7:19 am

Post Thu Apr 25, 2013 12:46 pm

Re: OWASP 2013 top 10 application security attacks using BackTrack 5 - Help Needed!!

Thanks for the suggestion ajohnson. I will take a look.
<<

m0wgli

User avatar

Sr. Member
Sr. Member

Posts: 308

Joined: Fri Jul 20, 2012 3:34 pm

Post Thu Apr 25, 2013 2:36 pm

Re: OWASP 2013 top 10 application security attacks using BackTrack 5 - Help Needed!!

cd1zz wrote:Go read this book cover to cover: http://www.amazon.com/The-Web-Applicati ... s+handbook.


+1 This is book is invaluable.They also offer accompanying labs as well.

In addition to Mutillidae, some other additonal resources that I've found useful:

Samurai Web Testing Framework Course Slides

The OWASP WebGoat Project

Vulnerable Web Applications
Last edited by m0wgli on Thu Apr 25, 2013 4:05 pm, edited 1 time in total.
Security + | OSWP | eCPPT (Silver & Gold) | CSTA
<<

SUdoctstudent

Recruiters
Recruiters

Posts: 8

Joined: Wed Mar 13, 2013 7:19 am

Post Fri Apr 26, 2013 8:17 am

Re: OWASP 2013 top 10 application security attacks using BackTrack 5 - Help Needed!!

Thanks for this!
<<

Jamie.R

User avatar

Sr. Member
Sr. Member

Posts: 435

Joined: Mon Aug 06, 2012 9:57 am

Location: UK

Post Fri Apr 26, 2013 9:18 am

Re: OWASP 2013 top 10 application security attacks using BackTrack 5 - Help Needed!!

There are also loads on this that relate to web, networking and pretty much most things.

http://vulnhub.com/
| OSWP | eCPPT Silver and Gold | eWPT |

I'm an InterN0T'er
<<

SUdoctstudent

Recruiters
Recruiters

Posts: 8

Joined: Wed Mar 13, 2013 7:19 am

Post Fri Apr 26, 2013 10:17 am

Re: OWASP 2013 top 10 application security attacks using BackTrack 5 - Help Needed!!

I appreciate the info and insight. Thanks again!

Return to Tutorials

Who is online

Users browsing this forum: No registered users and 2 guests

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software