This is a type of attack which an attacker provides a type of untrusted or malicious input into a web application.
An SQL database is used to store records of user's data.
An attacker is able to inject malicious SQL code into the SQL Server.
The attacker is able to retrieve, create, modify and even delete records from the SQL Server.
LDAP is a network protocol which is used to perform a query to a directory server.
An example of a directory server is Active Directory (AD) on Windows Server.
If the attacker is able to capture and modify the LDAP query between the client and server, the attacker may be able to retrieve sensitive information from the directory server.
XML is a web programming language.
In an XML injection, the attacker is able to send/inject malicious XML code into an XML parser on the web application server.
This allows the attacker to retrieve sensitive data from the XML web application server.
DLLs are the library files which are required by programs and applications on a system.
DLLs allows software developers to adds code into a program to add additional features on the application.
Within a DLL injection attack, the attacker is able to inject malicious code into the library file (DLL) of an application to provide additional functionality of the application on the victim's system.
If an attacker is able to inject malicious code in a DLL of a driver, the attacker may be able to gain system-level access on the victim' system.
In a command injection attack, the attack sends/injects malicious code into a vulnerable web application.
The vulnerable web application will pass the command to the operation systems and executes it.
The attacker may be able to perform operating system functions such as retrieve sensitive data from the local disk drive.
When attacker performs any type of web application, the operating system will need to use various amounts of computing power to perform the actions.
Web application attacks can cause the host (victim) operating system use a lot of computing resources such as high CPU, RAM, Storage and Network utilizations.
Resource exhaustion leads to the host (victim) system not having enough computing resources available for other applications and services.
A baseline can be used to measure whether a system or network is operating normal or abnormal.
Some web application attacks can lead to memory leakage.
During a web application attack, the attacker may be able to cause the vulnerable web application to consume a lot more memory on the system.
Memory leaks can cause the web application to exhaust the available amount of RAM on a system.
Software drivers allows the operating system to interact with the hardware component.
These drivers are often trusted and hence creates a security risk.
In a driver manipulation, the attacker is able to modify the code within the driver and modify the functionality of the driver itself.
The operating system contains shims which allows you to modify applications to run the driver on older versions of the operating system to support backward compatibility.
Attackers are able to create their own version of a Shim to bypass security controls on an operating system.
This can allow an attacker to run the driver at a higher level privilege on the victim's system.
This technique allows the attacker to modify the code of the driver to evade detection on the victim's system.
By modifying the code of the driver, the functionality of the driver may or may not change.
The Race condition is a code-related issue as multiple persons are working on the same code project at the same time.
If changes to the code happening simultaneously, bad things can happen. This is referred to as a Race Condition.
Race conditions can be as multiple processes on system is attempting to access the same resource on a system.
The time of check (TOC) is simply the time at which a user checks a file.
At this point in time, the file or code is at a particular state.
The time of use (TOU) is simply the time at which a user uses or executes a file.
Between the time of use (TOU) and the time of check (TOC), changes of the file or code may occur, creating inconsistency.
This type of attack allows a hacker to access a sensitive location in memory on a system.
The attacker may be able to perform additional attacks such as command injection to retrieve sensitive information from the vulnerable web application.
This type of attack, the hacker sends or inject numbers into a vulnerable web application and the system reveals sensitive information.
This type of vulnerability exist when a program or user is attempting to place a very large number into a small area in memory.
XSS is a type of web application attack which is usually executed within the victim's web browser.
There are various type of XSS such as Reflected XSS and Stored XSS and Document Object Model (DOM) based XSS.
In a Reflected XSS attack, the hacker creates malicious link and send it to the victim's via email.
When the user clicks the link, the victim is browser is directed to a malicious website which will download and execute malicious code on the victim's browser.
In a Stored XSS, the hacker will inject malicious script into an input box on a website and is stored on the webserver.
The malicious script is downloaded and executed on any victim's browser who visits the webpage.
DOM-based XSS allows an attacker to process untrusted data on a website.
Document Object Model (DOM) handles how a document is process on a website.
In a CSRF attack, the attack takes advantage of the trust that is established between an authenticated user on a trusted website.
When a user logs-on to a website, a trust is established between the authenticated user and the web server.
The attacker can send a malicious link to the authenticated user, when the victim clients the link, the malicious payload is executed within the victim's web browser.
The victim's web browser then performs malicious actions against the trusted website.
In this type of attack, the attacker will send malicious HTTP code to an online vulnerable web server.
Once the vulnerable web server executes the malicious code, the attack can pivot his/her attacks through the vulnerable server to other devices on the internal network.
The malicious code attacks the vulnerable server itself which allows the attacker to perform pivoting attacks and techniques.
In a client-side attack, the attack occurs on the client's web browser.
These types of attacks are the XSS and CSRF.
In a replay attack, the attacker attempts to re-transmit data that is capture from a victim to a server.
This attack takes advantage between an authenticated user and the resource server.
Once a victim is logged-in to a server, the attack is capturing (sniffing) traffic between the authenticated user and the server.
Once the attacker captures the authenticated user's request to the server, the attacker can re-transmit the request back the server to access the resource without requiring to authenticate to the server.
When a user is sending their user credentials across a network to a resource server, the user's system will create a hash of the password.
The user system will send the hash of the password across the network to prevent an attacker from seeing the plaintext password.
The attack can capture the victim's password hash value and replay the hash to the resource server across the network.
This allows the attacker to gain the same level of privileges of the user on the resource server on the network.