User Account

All Pages

Describe sql injection and cross-site scripting

Assignment Help Other Subject
Reference no: EM133836161 , Length: word count:500

Software Fortress and Web Protection

Practical Lab Activity

Learning Outcome 1: Explain the external threats and internal risks associated with software and web applications.

Assessment Task
For this assessment task, you will identify and describe security vulnerabilities and weaknesses in a web application or service.

Context
SQL injection and cross-site scripting (XSS) are common security vulnerabilities in web applications. Learning how to identify, prevent and mitigate these vulnerabilities is essential for ICT professionals working in software development, cybersecurity and related fields.

In this assessment task, you will be required to describe SQL injection and cross-site scripting (XSS) vulnerabilities in a web application called Damn Vulnerable Web Application (DVWA). This tool is cross-platform virtualisation software used by security professionals and enthusiasts to perform various security assessments and penetration testing on different systems and applications.

Instructions

In preparation for this assessment task, please review the learning resources for Modules 1-4 before undertaking the Online Practical Activity. Get professional assignment writing service now!

You will use a Kali Linux virtual machine to complete the practical lab activity. Before commencing the activity, please ensure that you install and set up the Damn Vulnerable Web Application (DVWA) on the Kali Linux virtual machine. Once you have set up DVWA, you will perform an attack on the web application using different techniques.

To complete this assessment task successfully, you must complete the following tasks:
You will implement an attack on the DVWA on a Kali Linux virtual machine. You will use the DVWA application to execute the attack. While completing the task online, you must record your actions on a separate document in the form of a report.

This Online Practical Lab Activity consists of two (2) tasks. You will select one (1) from the following two listed:

SQL Injection Attack - Perform a SQL injection attack on the DVWA SQL injection page and bypass authentication.

OR

Cross-Site Scripting (XSS) Attack - Perform an XXS attack on the DVWA XSS page and bypass authentication.

Content and format of the report:

You will articulate the steps you followed in executing the attack. This should include identifying the vulnerabilities and describing the potential impact of the attack. You will include the following points in the report:

Information on the selected attack (SQL injection or XSS), including what it is, how it works, and its potential impact.

Description of the steps you took to perform the SQL injection or Cross Site attacks on DVWA, including the SQL commands used and the results obtained.

Screenshots of the commands used and results at each step of the process.
Clear explanation of the potential business and societal impacts of the attacks.

When writing the report, make sure that you:
use clear, concise and cohesive language to elucidate the steps taken and the results obtained, and
formulate the content of the report logically, coherently and sequentially.

You will submit your report in a document format (e.g., PDF, Word) on Blackboard after completing the online practical lab activity.

Referencing
It is essential that you use the current APA style for citing and referencing.

Reference no: EM133836161

Questions Cloud

What is public health : What is public health, and what is the Healthy People Initiative? After your chapter readings, how would you describe public health in your own words?
Utilizing eriksons stages of development : Utilizing Erikson's stages of development, identify 3 considerations with rationale when caring for Lucy, a 3 year-old hospitalized patient.
What is your goal to practice mental health counseling : What is your goal to practice mental health counseling (i.e., community- based organizations, nonprofit entities, hospitals).
How should julio organize his day : How should Julio organize his day? Set up an hourly schedule. What type of client management approach should Julio consider in assigning staff appropriately.
Describe sql injection and cross-site scripting : SFW541 Software Fortress and Web Protection, Torrens University Australia - describe SQL injection and cross-site scripting
Evaluate the risk of antibiotic resistance : Explore appropriate antibiotic selection and dosing. Evaluate the risk of antibiotic resistance and the importance of antibiotic stewardship in this case.
Discuss the evidence-based pharmacological treatment : Discuss the evidence-based pharmacological and nonpharmacological treatment for this patient using the US Clinical Guidelines.
Devise a structured inquiry-based ict project : ITW601 Information Technology, Torrens University Australia ASSESSMENT BRIEF – Option 1: Industry Placement
How would you instruct the patient to taper off clonazepam : How would you instruct the patient to taper off clonazepam? How would you start the new recommended psychotropic medication for the patient?

Reviews

Write a Review

Other Subject Questions & Answers

  Cross-cultural opportunities and conflicts in canada

Short Paper on Cross-cultural Opportunities and Conflicts in Canada.

  Sociology theory questions

Sociology are very fundamental in nature. Role strain and role constraint speak about the duties and responsibilities of the roles of people in society or in a group. A short theory about Darwin and Moths is also answered.

  A book review on unfaithful angels

This review will help the reader understand the social work profession through different concepts giving the glimpse of why the social work profession might have drifted away from its original purpose of serving the poor.

  Disorder paper: schizophrenia

Schizophrenia does not really have just one single cause. It is a possibility that this disorder could be inherited but not all doctors are sure.

  Individual assignment: two models handout and rubric

Individual Assignment : Two Models Handout and Rubric,    This paper will allow you to understand and evaluate two vastly different organizational models and to effectively communicate their differences.

  Developing strategic intent for toyota

The following report includes the description about the organization, its strategies, industry analysis in which it operates and its position in the industry.

  Gasoline powered passenger vehicles

In this study, we examine how gasoline price volatility and income of the consumers impacts consumer's demand for gasoline.

  An aspect of poverty in canada

Economics thesis undergrad 4th year paper to write. it should be about 22 pages in length, literature review, economic analysis and then data or cost benefit analysis.

  Ngn customer satisfaction qos indicator for 3g services

The paper aims to highlight the global trends in countries and regions where 3G has already been introduced and propose an implementation plan to the telecom operators of developing countries.

  Prepare a power point presentation

Prepare the power point presentation for the case: Santa Fe Independent School District

  Information literacy is important in this environment

Information literacy is critically important in this contemporary environment

  Associative property of multiplication

Write a definition for associative property of multiplication.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd