Chapter 10: Identifying Server Vulnerabilities in Web Applications

In this chapter, we will learn about the main vulnerabilities in web applications. We will also learn about the tools we can find in the Python ecosystem to discover vulnerabilities in Content Management System (CMS) web applications and sqlmap for detecting SQL vulnerabilities. In terms of server vulnerabilities, we will cover in detail testing of the Heartbleed vulnerability in servers with OpenSSL activated. We will also cover testing of the SSL/TLS vulnerabilities with the sslyze module.

From a security point of view, it is important to identify server vulnerabilities because applications and services are continually changing, and any unpatched security issue can be exploited ...

Get Mastering Python for Networking and Security - Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Mastering Python for Networking and Security - Second Edition by José Ortega

Chapter 10: Identifying Server Vulnerabilities in Web Applications

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly