- Penetration Tester's Open Source Toolkit, 3rd Edition [Book]

WAF

seeWeb Application Firewall (WAF)

WAFWOOF

web application testing

234–235 , 235f

web server testing case study

249

“Walking the stack,” enterprise applications

296

WAN

seeWide area network (WAN)

Web Application Firewall (WAF)

web application testing

234

web server testing case study

249 , 250f

Web applications

basic approach

221–224

basic assessment

231–233

command execution attacks

231–232

core technologies

224–233

cross-site scripting attacks

233

database query injection attacks

232

directory traversal attacks

231

DVWA

enterprise applications

293–294 , 297

vs. enterprise applications

292

file system attacks

231

fimap

241–243 , 242f , 243f , 244f

Grendel-Scan

238–241 , 240f , 241f

hands-on challenge

255–256

impersonation attacks

233

information gathering attacks

231

isolated test lab ...

Get Penetration Tester's Open Source Toolkit, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Penetration Tester's Open Source Toolkit, 3rd Edition by Jeremy Faircloth

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly