3. How do you discover vulnerabilities on websites/servers?

How do you discover vulnerabilities on websites/servers?

If you’re asking because you want to learn, then I’d say most learning is done through practice. To put it simply: you need to know what to look for, and then what to try once you find a vulnerability.

DVWA is one resource that lets you learn as you exploit common web vulnerabilities. There are fourteen listed vulnerabilities that you can work through on differing levels of security (aka difficulty levels). It’s a neat little learning experience because you use the provided source code and hints to exercise all the vulnerabilities. Working through each level also exposes you to quite a few tools (like Burpsuite). You can find walkthroughs online that explain how to set it up.

Obviously, in real life you won’t know what you’re looking for and exactly how many vulnerabilities there are, but it’s great exposure for someone who is learning.

/r/HowToHack Thread
Previous
Next

Recently removed from /r/HowToHack

Can malware persist after factory reset laptop? More subs like this? How would you approach this password cracking? How difficult is hacking to learn and is it a skill I should pick up? What information can I find through someone's IP address? nmap Weirdness Question IP-to-HDMI exploit. What to do next? What does * do in Linux? Coding VS Hacking I'm new to hacking, and I have a few questions about the legality of what I want to do, going to prison isn't on my bucket list. Some help with starting out how do i submit a penetration testing report to a motel manager whose wifi i gained access to, without permission.

More Random Comments

Trump's shutdown may cause me to get evicted Regular Check-In Post DIY HRT Jeg tenker om å bli en lærer. Råd? It’s easy to hate Garrett sometimes, but man if he doesn’t love our team. Prayers to Hurns What is the meanest thing a teacher/professor has done to you? Drinking your own water in a café Babycenter Moms are Assholes Between BJP and Dalits, why khichdi is the lowest common denominator What dumb thing did you "get away" with as a kid, but looking back you know your parents knew? TIL that the Nazi Party was particularly fond of decaffeinated coffee, as it saw caffeine as a poison that "threatened the Aryan Race." What qualities do guys like in a pinay? Any dealbreakers or stereotypes? The Aries Woman: I’ve never read anything so on point about the female rams’ personality. In fact, I think astrologers in general would enjoy this. Aries: Let me know if you agree with this text. I’ve read so much but never something as accurate. Would love to hear thoughts from Aries and non Aries. What books do you recommend to really understand the cruelty and associated ideologies of the last century? Which browser do you use, on what distro, and why do you prefer it?