APPLICATION PENETRATION TEST SUPER VEDA

More documents

Recommendations

Info

Application Penetration Test for Super Veda- Sample Report -Identifying the Field's TypesAfter understanding that there are 6 fields in the original query, the attackerenumerates on their types by changing the type from int to char until theerror messages change.First he changes the first 1 to '1' – not getting any result.Then he changes the second field to a varchar field – getting this new errormessage:He understands that there is yet another field who is to be turned from int tovarchar, so he keeps his enumeration, soon getting another new errormessage.ImpervaPage38 of73
Application Penetration Test for Super Veda- Sample Report -Which – again – tells him that he is correct in his previous placements ofvarchar fields, but there are still more changes to perform. He continues hispath of changing ints to varchars, until he gets a full compliant query resultpage.ImpervaPage39 of73
Page 1 and 2: APPLICATION PENETRATION TESTSUPER V
Page 3 and 4: REFERENCESREF DOCUMENT VERSION DATE
Page 5 and 6: 5.6 Script Injection into User’s
Page 7 and 8: Application Penetration Test for Su
Page 37: Application Penetration Test for Su
Page 73: Application Penetration Test for Su

APPLICATION PENETRATION TEST SUPER VEDA

Create successful ePaper yourself

Delete template?

Save as template?