Chapter 9. Assessment of Web Servers and Web Applications

In this chapter, you will learn the techniques of assessing the web servers and web applications that are a part of the vast majority of the environments we will encounter. We will discuss the following topics:

Analyzing web applications with Burp Suite
Identifying web application firewalls
Penetrating web application firewalls
Tools

This chapter will provide us with information on one of the most popular attack vectors and the attack vector that is accessible on virtually any environment. Virtually all organizations will require some form of online presence. Therefore, it is a good bet we will have a web server and probably some web applications that we can use to attempt to compromise a ...

Get Building Virtual Pentesting Labs for Advanced Penetration Testing - Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Building Virtual Pentesting Labs for Advanced Penetration Testing - Second Edition by Kevin Cardwell

Chapter 9. Assessment of Web Servers and Web Applications

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly