You have not logged in. Access is limited, Please login to get full Access

Web App pentesting - (Basics)

Web application penetration testing (basics) involves assessing a web app for security vulnerabilities that could be exploited by attackers. It starts with information gathering, followed by identifying common issues like SQL injection, XSS, CSRF, broken authentication, and insecure direct object references (IDOR). Tools like Burp Suite, OWASP ZAP, and browser dev tools are commonly used. The goal is to simulate real-world attacks to find and fix weaknesses before malicious actors can exploit them.

Task 1 Web App pentesting - (Basics)

Scenario:
You are tasked with assessing the security of a newly developed internal web application for "Acme Corp." The application allows employees to submit and track IT support tickets. You have been provided with the URL (http://craw.local/support) and told to look for common vulnerabilities. The login page has a username and password field. Upon successful login, the user is presented with a dashboard where they can view their tickets, submit new tickets, and edit their profile.
You've spent some time exploring, and you notice some interesting behavior.

Answer The Questions

Question 1.
You try 'admin' for username and 'password' for password. It gives an error. What type of attack are you attempting?

Question 2.
After several tries, you successfully log in using "testuser" and "testpass". You notice the URL in the browser has a parameter like id=123. Changing that number to id=456 shows another user's ticket information. What vulnerability is likely present?

Question 3.
In the new ticket submission form, you enter the following in the description field: <script>alert('XSS')</script>. Upon submitting the ticket and viewing it, you get an alert box. What type of vulnerability did you exploit?

Question 4.
In the profile edit page, there is a field to change your email address. You enter the following: [email protected]' --. The application returns an error related to the database. What type of attack did you attempt?

Question 5.
When examining the cookies, you notice a cookie called "sessionid" with a long string of characters. What attack involves trying to guess or predict session IDs to gain unauthorized access?

Question 6.
In the login form, you enter "admin" for the username and "password' OR '1'='1" for the password. You successfully log in as admin. What type of injection is this?

Question 7.
When you view the page source you find a comment  What type of insecure storage is this?

Question 8.
On the ticket creation page, you upload a file named "malware.php". The application accepts the file without validation. What vulnerability did you exploit?

Question 9.
What is the OWASP's list of the ten most critical web application security risks called?

Question 10.
You use a tool to automatically scan the application and it reports that several libraries being used by the web application have known exploits. What is this type of vulnerability known as?

Web App pentesting - (Basics)

Task 1 Web App pentesting - (Basics)

Email Verification Required

Admin Panel