Out-of-band channels for entry points in web application hacking

–1 vote
I am trying to execute a sql injection and cross-site-scripting on a web application from out-of-band channels. What are the ways/channels that I can use to send user input data?
Aug 22, 2019 in Cyber Security & Ethical Hacking by Emma
 947 views

1 answer to this question.

0 votes

The out-of-band channels for entry depends on the services that the web application uses. Here are some common out-of-band channels you should look for to inject malicious data:

  • Application that processes contents in the emails
  • Application that receives results from another web application or https response
  • Application that use or provides API interface

To know more take this CEH (v12) - Certified Ethical Hacking course today.

answered Aug 22, 2019 by Daniel

Related Questions In Cyber Security & Ethical Hacking

0 votes
2 answers

does kali linux provide all services of ethical hacking in one application

Hey, @Vatsal, Almost all the services of Ethical ...READ MORE

answered Apr 21, 2020 in Cyber Security & Ethical Hacking by Gitika
 • 65,770 points
edited Oct 6, 2021 by Sarfaraz 774 views
0 votes
0 answers

How can I leverage Python’s Scapy library for network packet manipulation in ethical hacking?

Oct 11 in Cyber Security & Ethical Hacking by Anupam
• 3,190 points 50 views
0 votes
1 answer

How can I leverage Python’s Scapy library for network packet manipulation in ethical hacking?

Scapy is a great tool as it ...READ MORE

answered Oct 23 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 2,960 points 66 views
0 votes
1 answer

What C or C++ libraries can help in developing custom security tools for ethical hacking?

Here are some C/C++ libraries commonly used ...READ MORE

answered Nov 6 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 2,960 points 50 views
0 votes
1 answer

How to identify Entry points for user input in a web application?

Following are the key entry points for ...READ MORE

answered Aug 22, 2019 in Cyber Security & Ethical Hacking by Raman
 2,106 views
0 votes
1 answer

Nonstandard query string markers and field separators in a web application

You should definitely consider them as entry ...READ MORE

answered Aug 22, 2019 in Cyber Security & Ethical Hacking by Likith
 814 views
0 votes
1 answer

Finding platform or programming language used in web application by file extension

Yes. It is possible to understand the ...READ MORE

answered Aug 22, 2019 in Cyber Security & Ethical Hacking by Will
 974 views
0 votes
1 answer

Find web application technology using directory names found during fingerprinting

You can find the technology using recon ...READ MORE

answered Aug 22, 2019 in Cyber Security & Ethical Hacking by Rachek
 593 views
0 votes
1 answer

Is it possible to find technolgy name of a web application using session tokens?

If the web application uses web servers that ...READ MORE

answered Aug 22, 2019 in Cyber Security & Ethical Hacking by Kumar
edited Oct 7, 2021 by Sarfaraz 760 views
0 votes
1 answer

How to check if MAC Protection is enabled for ViewState in ASP.NET application?

You can check if the ViewState is ...READ MORE

answered Aug 23, 2019 in Cyber Security & Ethical Hacking by Tina
 2,663 views
webinar REGISTER FOR FREE WEBINAR X
REGISTER NOW
webinar_success Thank you for registering Join Edureka Meetup community for 100+ Free Webinars each month JOIN MEETUP GROUP
"PMP®","PMI®", "PMI-ACP®" and "PMBOK®" are registered marks of the Project Management Institute, Inc. MongoDB®, Mongo and the leaf logo are the registered trademarks of MongoDB, Inc.