book/courses that teaches me about vulnerabilities and also teaches how to get rid of them in web/mobile application?

B

Brief-Wishbone9091

Member
Joined
Apr 16, 2023
Messages
146
Reaction score
16
Credits
1,429
vulnerabilities like

  • blind sql injection
  • untrusted search path vulnerability
  • Distributed Computing Environment / Remote Procedure Calls (DCE/RPC) or MSRPC
services running on the remote host can be enumerated by connecting on port xyz and doing the appropriate queries.
  • web-inf information disclousre vulnerability
  • directory traversal vulnerability
  • Cleartext Transmission of Sensitive Information via HTTP
etc etc basically textbook penetrating testing remedy books/courses etc. I want remedy, for that I do need to understand vulnerability. I don't need to learn how attack to find vulnerability. That's not my job. I just need to provide remedy on linux servers.
 


f33dm3bits

f33dm3bits

Gold Member
Gold Supporter
Joined
Dec 11, 2019
Messages
6,408
Reaction score
4,864
Credits
47,089
All you have to do is run a vulnerability scanner on your servers.
 
Brickwizard

Brickwizard

Well-Known Member
Joined
Apr 28, 2021
Messages
4,944
Reaction score
3,310
Credits
36,789
Brief-Wishbone9091 said:
I am talking about learning how to remedy it not how to pentest it.
Click to expand...
To me, this is a chicken-and-egg situation, to remedy any possible intrusions/holes in your system you will need to test it yourself [or pay to have it tested] to assess what you need to do, the link at the bottom will give you a guide to what standard scanners are available to Linux users, but If you want to progress as a systems engineer/manager I strongly suggest [if you have time ] learn pentesting. There are several pen-testing distributions you could install on a spare machine [or in a VM] for education purposes,
the easiest to install is Parrot [either the Security edition or the home edition, as the tool are available in both distributions]

geekflare.com

12 Tools to Scan Linux Servers for Security Flaws and Malware

Even though Linux-based systems are often considered impenetrable, there are still risks that need to be taken seriously. Rootkits, viruses, ransomware,
geekflare.com geekflare.com
 
You must log in or register to reply here.

Members online

Total: 457 (members: 4, guests: 453)

Latest posts

Top