7. Applications in Debug Mode
• Applications going into production with debugging info
set
• Excessive logs on systems
• Track Data
• Usernames/Passwords
• Admin functions
• Extra functions available for use
8. Deprecated or old code
• Developers leaving old code that can still be executed
• page1.asp when page.asp is the correct version
• Deprecated functions (triggered through get/post)
• Poorly executed upgrades
• Old code from old versions
(jump.php not in current ver)
• Incomplete Upgrades
9. Poor Hardening
• Applications ignoring input validation
• Blank SQL Account passwords (INCLUDING SA)
• Easily Guessed Passwords
• Complex applications with 3rd party middleware
• Follow the data path
• Consider binary analysis
• Clear User IDs/Passwords from app to DB or stored
10. Other Misc. Causes
• DLL injection
• Drive-By in the form of hidden iFrames
• INTERESTING Attacks
• Complexity increasing
• Memory Dumping
• Sniffer/Keylogger
• Any/Any rules on firewalls