If you were going to break into a database-based website, how would you do it?
Answer / chaitanya
learning to break into your own systems so that you can pen test them yourself. While the exact methods are different for each type of database server and programming language, the easiest attack vector to test for first is an SQL injection technique. For example, if the input fields are not sterilized, just entering a specific set of symbols into a form field may be enough to get back data. Alternatively, depending again on how the site is written, using a specially crafted URL may be enough to get back data as well. Footprinting the server ahead of time can help in this task if it isn’t one you built yourself.
Is This Answer Correct ? | 4 Yes | 1 No |
What is the difference between a Black Hat and a White Hat?
What is the Three-way handshake? How can it be used to create a DOS attack?
What is database in a computer?
What is residual risk?
Why are internal threats oftentimes more successful than external threats?
Why is deleted data not truly gone when you delete it?
If you were going to break into a database-based website, how would you do it?
What is the CIA triangle?
What’s the difference between a White Box test and a Black Box test?
What are salted hashes?
How would you find out what a POST code means?
What is the Chain of Custody?