Linkedin Twitter Medium Github HTB

Whoami
Walkthroughs & Writeups
Web_AppSec
Network & AD Pentesting
Cloud_Security
- AWS Pentesting
APISec
- API_Recon
- Broken_Access_Control & Info_Leaks
Code_Review
- Source_Code_Review_101
- Code Review Tools
Bug_Hunting
- Picking_A_BugBounty_Program
- Writing_A_Good_Report
MITRE ATT&CK

Powered by GitBook

On this page

.NET
Information Gathering
Vulnerabilities
Node.js
Information Gathering
Vulnerabilities
Java
Information Gathering

Was this helpful?

Web_AppSec

Backend_Technology_Tricks

.NET

Information Gathering

Cookie (ASP.NET_SessionId, ASPXAUTH)
Server Headers
ViewState
Response Header (X-Powerded-By, X-AspNet-Version)
Error Messages

Vulnerabilities

Low Hanging Fruits
Server Information Disclosure
Lack of Security Headers
IIS Default Page Disclosure
Improper Error Handling
ASP.NET Debugging Enabled
Directory Listing
ASP.NET ViewState Vulnerabilities

Improper Error Handling - .NET

ASP.NET Debugging Enabled - .NET

Server Information Disclosure - .NET

IIS Default Page Disclosure - .NET

ASP.NET ViewState Vulnerabilities

MAC Disabled
MAC Enabled (encryption key via brute-force)
Web config file

Node.js

Information Gathering

Cookie (connect.sid)
Server Headers
Response Header (X-Powerded-By)

Vulnerabilities

SQL Injection - Node.js:

XSS - Node.js

Improper Authentication and Authorization – Node.js

IDOR - Node.js

Java

Information Gathering

Cookie (JSESSIONID)
Server Headers (Tomcat, WebLogic, JBoss)
Endpoints (JSP)
Response Header (X-Powerded-By:Servlet)
Error Messages

PreviousATO NextXSS

Last updated 8 months ago

Was this helpful?