Security Tool to Test Security Vulnerabiities

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Security Tool to Test Security Vulnerabiities

    1. Tools: pci scanning or Nessus or CSF or Login Failure Daemon, or LFD.
    2. You can find a variety of tools (such as Nessus) to test your website for security vulnerabilities. Do some web searching and you can find them. These will certainly help, in the sense that they will catch the most common (easiest) errors. They are the first step.

    You can also learn to do deeper pen testing, but it takes time, experience, and training. Do a web search for Kali Linux and Metasploit as examples.
    If you run such tools, be careful to warn your provider(s) in advance and get acknowledgement from them. Make sure that they know that you own both systems (tester and target) and will not test any other IP addresses. Many providers have anti-hacking policies and will cancel any VPS that violates them. The same goes with ISPs. They will notice!
    Once you have already cleaned up "the low hanging fruit", and need additional testing, it is time to hire a professional.
    Security is not about absolute protection, it is about reducing risk. You cannot eliminate all vulnerabilities. Consider it like fire insurance. You can do the easy stuff (remove gasoline cans from your garage, for example), but a flaming airplane could still crash from the sky and burn your house.
    Each step you take will reduce your vulnerabilities, but the cost for each level of improvement is much higher than the previous level. You have to decide how much risk you are willing to accept at a reasonable cost.
    Security is also an ongoing process. New vulnerabilities are discovered each day. It is your responsibility to keep your VPS up-to-date with the latest patches, and periodically re-run tests.

  • #2
    Very useful post thanks for sharing.

    Comment


    • #3
      Security testing is an essential part of software testing and basically ascertains that asymmetric loopholes within an industry are little to none. The more the loopholes the higher the loss to the industry. There are several security testing tools used in security testing. A few such methodologies are:

      1 Knock subdomain scan
      2 Iron Wasp
      3 HP webinspect
      4 Google Nogotofail
      5 Flawfinder
      6 Ettercap
      7 BFBTester
      8 Browser Exploitation Framework
      9 Kiuwan Security
      10 Wapiti

      Security testing is done to find out whether the data within an information system is safe and the anticipated functionality is sustained.

      Comment


      • #4
        Adding to the list of useful tools:-
        Burp Suite
        Zaproxy
        Arachni
        SQLMap
        Last edited by bountysite; 10-24-2019, 09:48 AM.
        BountySite : Every Website deserves Security
        Website Time Machine with Offsite Security Scanning

        Comment


        • #5
          Originally posted by Armagedon View Post
          1. Tools: pci scanning or Nessus or CSF or Login Failure Daemon, or LFD.
          2. You can find a variety of tools (such as Nessus) to test your website for security vulnerabilities. Do some web searching and you can find them. These will certainly help, in the sense that they will catch the most common (easiest) errors. They are the first step.

          [/FONT][/COLOR]
          In that case usually web application firewalls are used. They are specially designed to provide data protection in case the apps have some errors or are exposed to cyber attacks. Here is an article with more details about that https://www.ptsecurity.com/ww-en/ana...tion-firewall/
          Last edited by Deco Porto; 06-08-2020, 20:46 PM.

          Comment

          Unconfigured Ad Widget

          Collapse

          Announcement

          Collapse
          1 of 2 < >

          FreeHostForum Rules and Guidelines

          Webmaster forum - Web Hosting Forum,Domain Name Forum, Web Design Forum, Travel Forum,World Forum, VPS Forum, Reseller Hosting Forum, Free Hosting Forum

          Signature

          Board-wide Policies:

          Do not post links (ads) in posts or threads in non advertising forums.

          Forum Rules
          Posts are to be made in the relevant forum. Users are asked to read the forum descriptions before posting.

          Members should post in a way that is respectful of other users. Flaming or abusing users in any way will not be tolerated and will lead to a warning or will be banned.

          Members are asked to respect the copyright of other users, sites, media, etc.

          Spam is not tolerated here in most circumstances. Users posting spam will be banned. The words and links will be censored.

          The moderating, support and other teams reserve the right to edit or remove any post at any time. The determination of what is construed as indecent, vulgar, spam, etc. as noted in these points is up to Team Members and not users.

          Any text links or images contain popups will be removed or changed.

          Signatures
          Signatures may contain up to four lines

          Text in signatures is subject to the same conditions as posts with respect decency, warez, emoticons, etc.

          Font sizes above 3 are not allowed

          Links are permitted in signatures. Such links may be made to non-Freehostforum material, commercial ventures, etc. Links are included within the text and image limits above. Links to offensive sites may be subject to removal.

          You are allowed ONLY ONE picture(banner) upto 120 pixels in width and 60 pixels in height with a maximum 30kB filesize.

          In combination with a banner/picture you can have ONLY ONE LINE text link.


          Advertising
          Webmaster related advertising is allowed in Webmaster Marketplace section only. Free of charge.

          Shopping related (tangible goods) advertising is allowed in Buy Sell Trade section only. Free of charge.

          No advertising allowed except paid stickies in other sections.

          Please make sure that your post is relevant.


          More to come soon....
          2 of 2 < >

          Advertise at FreeHostForum

          We offer competitive rates and a many kinds of advertising opportunities for both small and large scale campaigns.More and more webmasters find advertising at FreeHostForum.com is a useful way to promote their sites and services. That is why we now have many long-term advertisers.

          At here, we also want to thank you all for your support.

          For more details:
          http://www.freehostforum.com/threads...eHostForum-com

          More ad spots:
          http://www.freehostforum.com/forums/...-FreeHostForum
          See more
          See less
          Working...
          X