1) Enumerating Servers and IP address Discovery
Use tools like DNS lookup and WHOIS to discover all servers related to the website and their IPs.
2) Determining Hosting Type
For every discovered server, determine the type of hosting so you can decide whether Environment Scanning is a possibility.
3) Enumerating Running Services and Open Ports
For every discovered server, identify the server type and check what services are running on it.
4) Enumerating Vulnerabilities
For every discovered server/service, check for any associated vulnerabilities and available exploits.
5) Platform Discovery
Determine the underlying web server / programming language used.
6) Platform Vulnerabilities
Check for vulnerabilities and their associated exploits for the platform in question (web server/programming language).
7) Building Website Map/Tree
Build a map of the website's directories and files.
8) File upload
Check if you can upload files to the server using FTP and investigate potential problems
9) Cookie Poisoning
Test for Cookie Poisoning.
10) Client Side Validation Only
Check whether validation is only done on the client side.
0 评论:
发表评论