• XSS.stack #1 – первый литературный журнал от юзеров форума

How do you find vulnerabilities in a website?

Отслеживать
Spider777 сказал(а):
I've tried many publicly available scanning tools on GitHub, but their results haven't been very good. Does anyone have any better suggestions?
Should beginners learn programming languages or web penetration basics first?
Your question isn't comprehensive—it's like guessing.
There are many different vulnerabilities, and so are scanners.
Ask a more specific question and you'll get a more effective answer.
 
Spider777 сказал(а):
I've tried many publicly available scanning tools on GitHub, but their results haven't been very good. Does anyone have any better suggestions?
Should beginners learn programming languages or web penetration basics first?
Move beyond automated tools. While scanning is a common starting point, true expertise comes from manual testing. Keep learning and focus on the fundamentals. and also Watch POC in youtube or medium.com and learn OWASP TOP 10 with portswiger
 
_C3FaRiR_ сказал(а):
Your question isn't comprehensive—it's like guessing.
There are many different vulnerabilities, and so are scanners.
Ask a more specific question and you'll get a more effective answer.
You're right, he needs first to understand for what is he looking for.
 
machinegun сказал(а):
Move beyond automated tools. While scanning is a common starting point, true expertise comes from manual testing. Keep learning and focus on the fundamentals. and also Watch POC in youtube or medium.com and learn OWASP TOP 10 with portswiger
Thank bro
 
Spider777 сказал(а):
I've tried many publicly available scanning tools on GitHub, but their results haven't been very good. Does anyone have any better suggestions?
Should beginners learn programming languages or web penetration basics first?
To achieve this, you should first take the time to study the basics of cybersecurity in web systems, web applications, websites, etc., because there are many vulnerabilities (SQLi, NoSQLi, XSS, CSRF, RCE, and more). Depending on the specific vulnerability, you should practice gradually with a vulnerability scanner. Not everything is generic. If you already know something about website and database security, such as SQL, I suggest you try SQL injection. But don't confuse things; this is a fairly broad field. You will gradually discover tools for your needs. Learn SQLi manually or automatically with Burp Suite.
 
xSTRANGEGHOST сказал(а):
To achieve this, you should first take the time to study the basics of cybersecurity in web systems, web applications, websites, etc., because there are many vulnerabilities (SQLi, NoSQLi, XSS, CSRF, RCE, and more). Depending on the specific vulnerability, you should practice gradually with a vulnerability scanner. Not everything is generic. If you already know something about website and database security, such as SQL, I suggest you try SQL injection. But don't confuse things; this is a fairly broad field. You will gradually discover tools for your needs. Learn SQLi manually or automatically with Burp Suite.
Okay, thank you for the suggestion, brother. I'll give it a try.
 
Spider777 сказал(а):
I've tried many publicly available scanning tools on GitHub, but their results haven't been very good. Does anyone have any better suggestions?
Should beginners learn programming languages or web penetration basics first?
for web and port scan, nmap naabu, httpx
or do you mean scan in internal network?
 
WitchDoctor сказал(а):
for web and port scan, nmap naabu, httpx
or do you mean scan in internal network?
Regarding vulnerability scanning, this includes discovering which services they are using, the versions of the servers they are using, and the last time their website was updated.
 
_C3FaRiR_ сказал(а):
Your question isn't comprehensive—it's like guessing.
There are many different vulnerabilities, and so are scanners.
Ask a more specific question and you'll get a more effective answer.
The best approach is to study. Dedicate all your time to it. Except for having sex with women.
 
Spider777 сказал(а):
Regarding vulnerability scanning, this includes discovering which services they are using, the versions of the servers they are using, and the last time their website was updated.
ok, i know
first you must find services or vpn tech and after check vulnerability.
for check vulnerability you can use nuclei, burp suit, ....
Of course, don't be careless to go and check for vulnerabilities yourself.
 
WitchDoctor сказал(а):
ok, i know
first you must find services or vpn tech and after check vulnerability.
for check vulnerability you can use nuclei, burp suit, ....
Of course, don't be careless to go and check for vulnerabilities yourself.
ok bro:smile10:
 
Пожалуйста, обратите внимание, что пользователь заблокирован
смотря какие именно уязвимости вы надеетесь отыскать.
если уже известные, то эффективнее будут массовые сканеры с возможностью поиска по базам известных уязвимостей с дальнейшим их изучением и тестированием на возможность эксплуатации в ручном режиме.
если же цель найти еще не найденные, то наверное только в ручном - изучение исходников, если есть возможность, а так же реверсом скомпилированного и скомпонованного или же интерпретируемого выполняемого кода, и тестированием типа фаззинга, в ручном или автоматическом/полуавтоматическом

роадмап примерно один, а способов и инструментария очень много. но тут ведь важнее всего глубоко понимать суть работы систем, компиляции/интерпретации и выполнения кода. а когда уже есть четкое понимание-быстро разберетесь в том, какой инструментарий вам необходим, а затем уже и какой удобен.

ну и об ответственности не стоит забывать, разумеется.
 
Последнее редактирование:
admin


Напишите ответ...
  • Вставить:
Прикрепить файлы
Верх