TGS Forum
Hello Guest,

You are currently viewing our boards as a guest, which gives you limited access to view most discussions and access our other features.

By joining this community for FREE, you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content, & many other special features.

Registration is fast, simple & absolutely free, so please, join our community today!


 
PortalHomeFAQRegisterLog in

Share | 
 

 How to find a vulnerable website?

Go down 
AuthorMessage
Malay Akechan
Administrator
Administrator
avatar

Points : 676
Posts : 244
Join date : 2011-04-04
Location : Muzaffarpur, New Delhi
OS Used : Windows 7 & XP
Mobile : Nokia 5233, Samsung Galaxy Tab
Browser : Google Chrome Plus

PostSubject: How to find a vulnerable website?   Fri Sep 02, 2011 4:15 pm

Website security is a major problem today and should be a priority in any organization or a webmaster. yes

Now a days Hackers are concentrating alot of their efforts to find holes in a web application.

If you are a website owner and having a High Page rank and High Traffic then there is a chance that you might be a victim of these hackers. Suspect

Few years back their existed no proper tools search for vulnerability, but now a days there are tons of tools available through which even a newbie can find a vulnerable site and start hacking.

There are lots of methods that can be used to hack a website but most common ones are as follows:

1. SQL Injection
2. XSS (Cross Site Scripting)
3. Remote File Inclusion (RFI)
4. Directory Traversal attack
5. Local File inclusion (LFI)
6. DDOS attack

Tools commonly used to find a vulnerable website are:--

Acunetix

Acunetix is one of my favorite tool to find a venerability in any web application It automatically checks your web applications for SQL Injection, XSS & other web vulnerabilities.

[You must be registered and logged in to see this link.]

Nessus

Nessus is the best unix venerability testing tool and among the best to run on windows. Key features of this software include Remote and local file security checks and client/server architecture with a GTK graphical interface etc.

Download Nessus from the link below
[You must be registered and logged in to see this link.]

Retina

Retina is another Vulnerability assessment tool,It scans all the hosts on a network and report on any vulnerabilities found.

Download Retina from the link below
[You must be registered and logged in to see this link.]
Scanner.aspx

Metasploit Framework

The Metasploit Framework is the open source penetration testing framework with the world's largest database of public and tested exploits.

Download Metasploit (For Windows users) from the link below
[You must be registered and logged in to see this link.]

Download Metaspolit (For Linux users) from the link below
[You must be registered and logged in to see this link.]

yes Feel free to ask your doubts. wave
Back to top Go down
http://www.tgsforum.in
L30_Ph3niX
Grade - 2
Grade - 2
avatar

Points : 113
Posts : 56
Join date : 2011-08-12
Age : 26
Location : Greater Noida

PostSubject: Re: How to find a vulnerable website?   Sat Sep 03, 2011 5:15 am

great bro that was good but sarcastic ways to work around with these...I mean,I am not asking for any particular tool to be explianed but the logic , the approach that we need to have what we should go for what are the common options that we need to have an eye on in these softwares,etc.Cause even google didnt return efficient result these days...
Back to top Go down
http://www.encode.co.in
arjunchauhan24
Newbie
Newbie


Points : 3
Posts : 3
Join date : 2011-08-30

PostSubject: Re: How to find a vulnerable website?   Sun Sep 04, 2011 12:19 am

Dude, please give the cracked download links of all of these.. :D


thanks
Back to top Go down
L30_Ph3niX
Grade - 2
Grade - 2
avatar

Points : 113
Posts : 56
Join date : 2011-08-12
Age : 26
Location : Greater Noida

PostSubject: Re: How to find a vulnerable website?   Sun Sep 04, 2011 2:17 am

arjunchauhan24 wrote:
Dude, please give the cracked download links of all of these.. :D


thanks


grrr dude these are free software under the GPL,u can freely download & use them.So no need to crack these. wave
Back to top Go down
http://www.encode.co.in
errorboy007
Newbie
Newbie


Points : 6
Posts : 3
Join date : 2012-01-05

PostSubject: Re: How to find a vulnerable website?   Thu Jan 05, 2012 2:40 am

can anyone tell me how to use this sites
Back to top Go down
L30_Ph3niX
Grade - 2
Grade - 2
avatar

Points : 113
Posts : 56
Join date : 2011-08-12
Age : 26
Location : Greater Noida

PostSubject: Re: How to find a vulnerable website?   Thu Jan 05, 2012 11:07 am

Dude these are s\w sites you need to get these s\w & then use those s\w
Back to top Go down
http://www.encode.co.in
errorboy007
Newbie
Newbie


Points : 6
Posts : 3
Join date : 2012-01-05

PostSubject: Re: How to find a vulnerable website?   Thu Jan 05, 2012 5:54 pm

whats s/w???

i have dorks list but not sites
Back to top Go down
L30_Ph3niX
Grade - 2
Grade - 2
avatar

Points : 113
Posts : 56
Join date : 2011-08-12
Age : 26
Location : Greater Noida

PostSubject: Re: How to find a vulnerable website?   Thu Jan 05, 2012 6:18 pm

s\w = software

& bro Listen these are vulnerability finding automated or semi-automated software's site address given here which you can use to test a particular site for vulnerabilities ok.....& btw dorks are special query universal strings that are used to find a similar type of sites.So if you have the right dorks you will have the right sites . :-) got that !!!
Back to top Go down
http://www.encode.co.in
Sponsored content




PostSubject: Re: How to find a vulnerable website?   

Back to top Go down
 
How to find a vulnerable website?
Back to top 
Page 1 of 1

Permissions in this forum:You cannot reply to topics in this forum
TGS Forum :: Hacking Section :: Hacking Tutorials-
Jump to:  
Forum free | © phpBB | Free forum support | Contact | Report an abuse | Free forum