Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Remote File Include Vulns (Are you testing for it, are you teaching it)

from [Joseph McCray] Network Security [Permanent Link]
Subject: Remote File Include Vulns (Are you testing for it, are you teaching it)
Date: Fri, 13 Oct 2006 23:01:02 -0400 
I've been spending a lot of time googling these php shells (c99/r57 et
al) lately. It appears that people are getting these on servers via
Remote File Include vulnerabilities. 

I'm curious how many auditors are 1) testing for this stuff in your
audits. Tons of blog, forum, and wiki packages have these vulns - are
you guys testing for this stuff, and more importantly are you finding it
vuln in your audits?

Next question is for trainers, how much time are you spending on this
stuff in your web application security classes. Currently I'm spending a
hefty chunk of time on the big guns (SQL Injection, Cross-Site
Scripting, etc). I know these are the usual suspects, but when I get out
there on the Internet and google for any of these php shells I never get
past the first search page without finding a compromised server. If you
check out milw0rm, packetstormsecurity, etc most of the web app vulns
are remote file includes. Is anyone else noticing this, and what are
your thoughts?



-- 
Joe McCray
Toll Free:  1-866-892-2132
Email:      joe@learnsecurityonline.com
Web:        https://www.learnsecurityonline.com


Learn Security Online, Inc.

* Security Games        * Simulators
* Challenge Servers     * Courses
* Hacking Competitions  * Hacklab Access

Attachment: signature.asc
Description: This is a digitally signed message part

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Web Vulnerability Scanner, p4ssion
Next by Date:  Re: How to exploit gain root of OpenSSL?, gat0r
Previous by Thread:  [Full-disclosure] AttackAPI 0.8 is OUT, pdp (architect)
Next by Thread:  Re: Remote File Include Vulns (Are you testing for it, are you teaching it), Tim
Indexes:  [Date] [Thread] [Top] [All Lists]