Brief of #OWASP top 10 #Hacking jargons #hackers classification #VAPT #Web security overview #vulnerabilities #Importance of web security #application attack #network attack brief

1. MD RIZWAN HASAN
https://www.linkedin.com/in/md-rizwan-hasan-
9230b362/

2. Outline
The 5 W's of Web Security

3. 3
Why Web Security is IMP ?

4. 4
Why Web Security is IMP ?

5. 5
Approx 56% of all internet traffic is from an automated
source such as hacking tools, spammers, impersonators
and bots.
Why Web Security is IMP ?

6. 6
Why we care about Security ?
Downtime
Loss of data
Business reputation loss

7. 7
Why we care about Security ?

8. 8
Hacking
Exploiting system vulnerabilities
Modifying system / application features
Compromising security controls
Business loss

9. 9
Who are the actual Hackers ?
“If you know yourself but not the enemy, for every
victory gained you may also suffer a defeat.”

10. 10
Hackers Classification
White Hat
Black Hat
Gray Hat
Script Kiddies
Suicide Hackers
Cyber Terrorists
Hacktivist

11. 11
Hacking Phases
Reconnaissance
Scanning
Gaining Access
Maintaining Access
Clearing Track

12. 12
Hacking Jargons

13. 13
Hacker Jargons
Hack Value
Vulnerability
Exploit
Payload
Zero day attack
Bot
Doxing & daisy chaining

14. 14
Attack Vectors
Attack = Motive (Goal) + Method + Vulnerability.

15. 15
Top Attack Vectors
Botnet
Insider attack
Web application threats
Virus & worms
Mobile Threat
Phishing
Cloud Computer Threat

16. 16
Attack
Operating System attacks
Buffer overflow vulnerability
Bugs in operating system
Un-patched operating system
Breaking file-system security
Cracking password and encryption
mechanism
Attacking built-in authentication
system
Application Level attacks
Denial-of-service attack
SQL injection attack
Cross-site scripting
Sensitive information disclosure
Session hijacking
Parameter / form tampering
Directory traversal attack
Phishing
Buffer overflow attack

17. 17
DoS (Denial-of-Service)

18. 18
DDoS
Distributed Denial of Service

19. 19
DDoS Types
Volume based attack
UDP Flood
ICMP Flood
Application Layer attack
GET/POST floods
Protocol attack
SYN Flood
Ping of death attack

20. 20
UDP Flood

21. 21
ICMP Flood

22. 22
SYN Flood

23. 23
Ping of Death Attack

24. 24
HTTP Flood Attack

25. 25
Mark Curphey started OWASP on Sep 9,
2001.
OWASP
The Open Web Application Security Project (OWASP), an online
community, produces freely-available articles, methodologies,
documentation, tools, and technologies in the field of web application
security.

26. 26
OWASP Top 10
OWASP Top Ten - The "Top Ten", first published in 2003, which is
regularly updated.
It aims to raise awareness about application security by
identifying some of the most critical risks facing organizations.

27. 27
Injection
Broken Authentication
Sensitive data exposure
XML external entities.
Broken access control
Security mis-configuration
XSS
Insecure Deserialization
Using component with known
vulnerabilities.
Insufficient logging &
monitoring
OWASP Top 10 - 2017

28. 28
A1- SQL Injection
Un-sanitized input vulnerabilities to pass SQL commands for
execution by a backend database.
It is a flaw in web application and not a DB or web server issue.
Authentication Bypass
Information Disclosure
Compromised Integrity & Availability of Data.

29. 29
SQL Injection

30. 30
SQL Injection Login
URL = http://demo.testfire.net/index.jsp
Username: ' or 'bug'='bug
Password: ' or 'bug'='bug

31. 31
A2 - Broken Authentication
Password Exploitation
Predictable login credentials
Session ID in URLs
Timeout exploitation
User authentication credentials are not protected when stored.

32. 32
A3 - Sensitive Data Exposure
Application does not protect sensitive information from being
disclosed.
Information such as passwords, credit card data, session tokens, or
other authentication credentials.

33. 33
How to Prevent
Never store or transmit data in clear text.
Use strong, unique passwords for your applications and change them
regularly.
Use the latest encryption algorithms.
Disable autocomplete on forms that collect data.

34. 34
A4 - XML External Entities
Application is able to parse XML input from an unreliable source
because of misconfigured XML parser.
Allows to access protected files & services.
Attacker sends malicious XML inputs containing reference to an
external entity to victim web application.

35. 35
A5 - Broken Access Control
Exploitability - Occurs when the attacker changes the parameter
value for which he is unauthorized.
Technical impact - Privilege escalation
Insecure direct object reference - Exposure of internal
implementation objects.

36. 36
A6 - Security Misconfiguration
Unvalidated Inputs
Parameter / form tampering
Improper error handling
Unpatched security flaws
Enabling unnecessary services

37. 37
A7 - Cross Site Scripting
Malicious Script Execution
Exploiting user privilege
Data manipulation
Session hijacking
Brute force password cracking
Adds in hidden iframes and pop-ups

38. 38
Stored Cross Site Scripting

39. 39
A8 - Insecure Deserialization
Occurs when untrusted data is used to abuse the logic of an
application
Remediation
Validate the data before using it.
Use of checksum or digital signatures while transferring data b/w
two end points.

40. 40
A9 - Using Components with
Known Vulnerabilities
Applications and APIs using components with known vulnerabilities.
Components, such as libraries, frameworks, and other software
modules, run with the same privileges as the application.
Search of vulnerabilities on exploit sites.

41. 41
A 10 - Insufficient Logging &
Monitoring
Insufficient tracking leads to escape recording of malicious event.
It ignores important details about event.
Sufficient Content
Good format
Response plan

42. 42
VAPT

43. 43
Importance Of VAPT
Comprehensive Testing for Applications and Networks.
Identifies the weakest link in the chain.
Eliminates false positives and prioritizes real threats.
Detection of attack vectors missed through manual testing.
Secures against business logic flaws.

44. 44
VAPT Approaches
Software testing type performed to evaluate the security risks in the
system.

45. 45