Specify the 👇👇URL and purpose/title.
portfolio animation
https://github.com/animationbro/Personal-Portfolio-Web-design004
Subscribe to:
Post Comments (Atom)
-
Important links are below in comment that is required for my development or future use. Specify the 👇👇URL and purpose/title. portfolio ani...
-
Today Tasks 10PM - Morning Habits -- Wake Up (Make your Bed, Brush) -- Do exercise (Yoga, Run) -- Make / Eat Breakfast (ma...
ASP.NET Core: CRUD With React.js and Entity Framework Core : Step by Step
ReplyDeletehttps://dzone.com/articles/aspnet-core-crud-with-reactjs-and-entity-framework
ASP.NET Core: CRUD With React.js and Entity Framework Core : Step by Step
ReplyDeleteCRUD With React.js and Entity Framework
.NET version with correct version numbers for C#?
ReplyDeleteHow To Integrate Razorpay Payment Gateway In Blogger
ReplyDeleteThe assessment pattern has a striking resemblance to the TNQT-Digital assessment with questions covering Verbal, Numerical, Reasoning abilities, and advanced coding. Besides, you will be allowed to pick one of the below programming languages, if you happen to be an alpha-geek or tech-guru!
ReplyDeletehttps://event.on.24.com/wcc/r/2690653/4DDC5D95273441FA45EEBC3DCBCED666
ReplyDeleteHi Everyone
ReplyDeleteThis is Biswajit here.
I will disscuss about penetration testing today.What is penetration testing is?what are the different type of penetration are.Development standpoint what needs
to be done.
In this team many of you are aware of penetration testing.
So please feel free to correct me if i'm wrong somewhere.
or If you add something you can. It will be benifical for me and whole team also.
Lets start
fist of all we need to know what is vulnerabilty ??
Vulnerability is a weekness or flaw/loop holes in the system which can leave it open to attack.
Then comes what penetration does?
Pentration testing includes esploiting the vulnerabilty.
Penetration testing is an attempt to exploit the vulnerabilites to determine wheather unauthorized access or other malicios activity is possible.
I assume everyone has some basic idea of http, cookies, session. Otherwise I will give some overview of it.
Penetration testing type
Network Services
Web Application
Wireless
Social Engineering
Client Side
There are lot of things in respect to penetration testing .
Today we will focused on some issuse on web application Like SQL Injection, Cross Site Scripting, Vertical Privillage escalation.
SQL Injection
What? SQL Injection is an attack on your database
As a developer what mistake we do??Building SQL statement dynamically, by concatenating string
Example : -- Search - Pen';Delete from tblProduct
Sql Query in backend like - select *from tblProduct where name = 'Pen';Delete tblProduct
Prevention
Vertical Privillage Escalation
User Controller Error Meesage
Handling errors correctly is essential to the security of an application. If an error occurs and is not properly managed,
it is possible that an attacker could exploit it.
Alternatively, a poorly-handled error might leak sensitive data from an application that could aid in its exploitation.