This series of articles is a guide to the different types of web application vulnerabilities. Each article covers a specific type of vulnerability and gives you the following:
- A detailed explanation of the vulnerability
- One or more live examples that you are welcome to exploit to truly understand the problem
- Suggested approaches to defend your applications
Exploiting the vulnerabilities
The vulnerability scenarios all share a common web application and common host names. This consistency should make the articles easier to follow, but more importantly it should give you a precise picture of how the various pieces of web attacks fit together. The pieces are thus:
- You are the attacker and the site evil.duartes.org is under your control.
- The victim is Victim, Inc. and they run http://victim.duartes.org.
- Both the attacker and the victim visit buggy-third-party.duartes.org, albeit with different accounts.
Don't worry about these sites yet. Their roles are clarified in the articles.
Rules
- You are authorized to exploit the vulnerable web applications at victim.duartes.org and buggy-third-party.duartes.org, but only in the manner described in these articles.
- You are NOT allowed to attempt exploitation or test for the existence of vulnerabilities in ANY other URLs, host names, hosts, or systems in the duartes.org domain or in ANY other domain.
- If you suspect that one of the articles has a real (unintentional) security hole, please let me know.
Attacks covered
This is a work in progress. The following attacks are now covered:
What Now?
Subscribe to my blog
Email feedback
Discuss
Back to Articles index