I'm currently working on security for a website (JSP) that contains 2 pages: login and data page. Once a user logs in, they can select data from a specific table with read-only access.
After looking at Internet security threats, I wrote down a general list of what I might need to protect against
- Injections
- Xss
- authorization / session capture
- CSRF
- Direct object ref
I am currently reading about how to protect these attacks and what I should include in my code. However, I will not know if my code really works if I do not test these attacks for myself (and even then there may be other attacks that work). Right now, I just want some security, and so I need to know how to produce these attacks so that I can try them on my site.
The injections were simple, since all I had to do was type '1' = '1 in my code to show that it was erroneous. Then I used the prepared statements and the SQL injections no longer worked.
How can I reproduce the rest of these attacks to make sure my security is still working against the main attacks?
(Also, maybe some secure site or tool that I can use to check my vulnerabilities?)
source share