Chapter 3. Finding Entry Points
In this chapter: |
---|
An entry point is a place where input can be supplied to your application. For an attacker, an entry point is an optimal place to attempt to break your application. In security testing, it is important that you identify and investigate high-risk entry points as follows:
Identify entry points into your application and what they do.
Determine the level of access needed for each entry point.
Rank the high-risk entry points for testing purposes.
Test your entry points by attacking them.
After you have identified all of the entry points, you must analyze each to see whether it includes a point of failure that might enable an attacker to break the application. ...
Get Hunting Security Bugs now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.