Author Topic: How They Hack Your Website: Overview of Common Techniques (Read 7137 times)

mouser · « **on:** March 10, 2008, 07:01 PM »

DC Member Chris Hanscom (Veign) has a blog that is reliably good at discovering interesting articles day in and day out. Today is no exception.

Read on, to learn the basics of how sites and web content management systems are most often hacked, and what you can do to reduce the risk of it happening to you.

Methods Discussed:
SQL Injection
Cross Site Scripting (XSS)
Authorization Bypass
Google Hacking
Password Cracking

http://www.cmswire.c...echniques-002339.php

Screenshot - 3_10_2008 , 6_59_08 PM_thumb.png

from http://www.veign.com/blog/

f0dder · « **Reply #1 on:** March 10, 2008, 08:58 PM »

Since the topic of SQL Injection is mentioned, I'll have to link here

I guess the article is a good introduction, but it fails to mention abusing daemon software vulnerabilities... which is one very important attack vector as well, since there's automated tools for scanning blocks of IPs for vulnerable software and "auto-root the boxes"...

nudone · « **Reply #2 on:** March 11, 2008, 03:33 AM »

damn. i'm now going to have to spend the rest of the day, er, i mean week, reading veign's blog. lots interesting posts there.

Author Topic: How They Hack Your Website: Overview of Common Techniques (Read 7137 times)

mouser

How They Hack Your Website: Overview of Common Techniques

f0dder

Re: How They Hack Your Website: Overview of Common Techniques

nudone

Re: How They Hack Your Website: Overview of Common Techniques