Attacks can target infrastructure, users, or applications. In this section, we will be focusing on the different types of vulnerabilities user-facing applications and web hosts may have, and the types of attacks that may be employed on an application level against these services. This section will cover the following topics:
- Cross-site scripting (XSS)
- SQL injection
- LDAP injection
- XML injection
- Directory transversal/command injection
- Buffer overflow
- Zero day
- Cookies and attachments
- Malicious add-ons
- Session hijacking
- Header . . .
The content below this message is for members only.