W
WAFWOOF
web application testing
234–235 , 235f
web server testing case study
249
“Walking the stack,” enterprise applications
296
Web Application Firewall (WAF)
web application testing
234
web server testing case study
249 , 250f
Web applications
basic approach
221–224
basic assessment
231–233
command execution attacks
231–232
core technologies
224–233
cross-site scripting attacks
233
database query injection attacks
232
directory traversal attacks
231
DVWA
22
enterprise applications
293–294 , 297
vs. enterprise applications
292
file system attacks
231
fimap
241–243 , 242f , 243f , 244f
Grendel-Scan
238–241 , 240f , 241f
hands-on challenge
255–256
impersonation attacks
233
information gathering attacks
231
isolated test lab ...

Get Penetration Tester's Open Source Toolkit, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.