Demonstrate your knowledge of testing security controls aligned with

Homework Help

Note: RECOMMENDED ONLY TO A CYBER SECURITY TUTOR IN THIS FIELD PERIOD. PLEASE …READ THE ASSIGNMENT FULLY BEFORE CONTACTING ME!

Using the readings from weeks 7 and 8 as a baseline, analyze, test and document the results for the tutoring web application found on the SDEV virtual machine. ( I PREFER USING YOUR OWN VM HERE CAUSE I WOULDN’T SHARE PERSONAL INFO) Use both manual means and automated tools (e.g., ZAP). The latter will enable you to discover more information than a cursory manual examination. Specific tests to be conducted include:

1. Testing for Reflected Cross site scripting (OTG-INPVAL-001)  What is the importance of testing for this vulnerability?  How many occurrences of the vulnerability did an automated scan discover?  What is your recommendation to address any issues?  Can you place a simple JavaScript alert (e.g., DeleteSession.php as an example)?

2. Testing for Stored Cross site scripting (OTG-INPVAL-002)

 What is the importance of testing for this vulnerability?  What happens when you attempt to add a pop-up window (e.g., <script>alert(document.cookie)</script>) to the email input field within the “index.html” field?  Can you introduce Stored Cross site scripting?

3. Testing for SQL Injection (OTG-INPVAL-005)  Did your manual and automated testing discover any SQL Injection vulnerabilities – if so, how many? (Note: There should be at least one occurrence).  Name two or more steps you can take according to the reading to resolve the issue.  Fix and test at least one occurrence of the vulnerabilities – displaying your resulting source code and output results.

4. Testing for Code Injection (OTG-INPVAL-012)  What is the importance of testing for this vulnerability?  What are at least two measures you can take to remediate this issue?  Can you input some simple html code or exploit Remote File Inclusion (RFI)?

5. Test business logic data validation (OTG-BUSLOGIC-001)



 What are at least two examples of business logic errors? This could be from various input forms or areas you discovered in previous HW assignments.  How can you mitigate against such errors?

6. Test integrity checks (OTG-BUSLOGIC-003)  Do Drop down menus exist and are they sufficient for the application? Why does the use of drop-down menus help mitigate against this risk?  Does your manual or automated scan reveal the use of password “AUTOCOMPLETE”? What issue, if any, does the use of AUTOCOMPLETE pose?

7. Test defenses against application misuse (OTG-BUSLOGIC-007)



 What is the importance of testing for this vulnerability?  Can adding additional characters in input fields cause unexpected results? Verify for at least two instances.

General Guidelines

You should document the results for the tests, your comments, and recommendations for improved security for each security control tested in a word or PDF document. The format of your document should be the format that is recommended in chapter 5 of the OWASP testing guide. Provide screen captures and descriptions of your tests conducted. Discuss any issues found and possible mitigations.

Deliverables:

You should submit your document by the due date. Your document should be well-organized, use the OWASP recommended reporting format, include all references used and contain minimal spelling and grammar errors.

MUST FOLLOW THE ATTACHED GRADING RUBRIC:

Continue to order Manage Your Orders

Article

24/08/2022

They have a magnificent team. These people are always kind and willing to listen to your concerns or issues. Better yet, your assignment is always ready before the time, they usually send you a draft to double-check before they finalize your paper.

Discussion Essay

24/08/2022

The work has not been graded but I like the output that was submitted to me. Is it possible for the same prof to do the next assignment I will be submitting? If possible, I will greatly appreciate it.

Term paper

24/08/2022

Journal article

24/08/2022

Outstanding work! This writer followed every instruction and my paper came back with an A! I recommend to anyone needing help! Thank you again ❤️

Essay (any type)

24/08/2022

The writer is very fast, professional and responded to the review request fast also. Thank you.

Presentation/PPT

24/08/2022

Completed quickly and followed instructions given. Grammar, spelling, etc. was all good as well. Thank you so much! Will hire in the future.

Project

24/08/2022

Made 100% on both the outline and the paper. Quick turnaround time and my writer responded within 30 min or less. Any edits my instructor needed, my writer was patient and worked diligently to accomplish the task. Would recommend my writer to anyone!

Essay (any type)

24/08/2022

Outstanding job in writing my paper. I am always thrill to receive a well written paper that follows the instructions and the thorough details put into my paper. The quality of this paper is beyond awesome. Thank you so much.

Lab Report

24/08/2022

It took some time to achieve the product I was looking for, but we eventually got there. I do feel like a lot of hard work was put into this, and it even exceeded the page requirement. I'm pretty pleased overall. I give my thanks.

Analysis (any type)

24/08/2022

I absolutely love this writer! He/she always cranks out a fabulous paper and follows the assignment guidelines/instructions perfectly. Thanks again for always providing such quality work!!!

Essay (any type)

23/09/2021

Thank you much for writing my perfect assignment!.!. Very well written and great service

Report (any type)/Brief report

23/09/2021

Outstanding work. I highly recommend this writer

Personal reflection

23/09/2021

This writer followed my instructions and revisions very well. I am confident i will receive a good grade.

Blog post

23/09/2021

Did an excellent job!! will use again for future assignments.

Poem

23/09/2021

Excellent Work; I am delighted with this writer.

Other

23/09/2021

I a very pleased with the results! i got my grade back and it was 95

Essay (any type)

23/09/2021

The assignment met all requirements except for the scholarly position which the professor denies me points for. Overall the assignment was great.

Presentation/PPT

23/09/2021

I will definitely use this writer again.

Outline

23/09/2021

Very good and on-time writer. Quick response.

Research paper

23/09/2021

Awesome work.. Thank you so much. Sending you a tip....

Essay (any type)

23/09/2021

First perfect order I’ve ever received. Usually I have to edit the heck out of a “completed” order to make it presentable!

Response essay

23/09/2021

I always happy with your great work done on my each and every assignments.

Project

23/09/2021

This writer is brilliant and extremely helpful in making sure my assignment was successful. This is now my second time using this writer as I know they are very trustworthy in getting what I need done.

Journal article

23/09/2021

Article

23/09/2021

Awesome work, on time and very good quality too. Thank you so much

Essay (any type)

23/09/2021

Completed quickly and followed instructions given. Grammar, spelling, etc. was all good as well. Thank you so much! Will hire in the future.

Case study

23/09/2021

Very professional writer that was easy to communicate with.

Thesis/Thesis chapter

23/09/2021

work was done timely and writer was quick to respond to questions

Research proposal

23/09/2021

I always happy with your great work done on my each and every assignments.

Analysis (any type)

23/09/2021

Received on time. Will provide more feedback when the paper is graded, reads well, content and grammar are on point!

Literature Analysis/Review

23/09/2021

Presentation/PPT

23/09/2021

Great work and well within the time requested!

Thesis/Thesis chapter

23/09/2021

Awesome work, on time and very good quality. Thank you so much

Term paper

23/09/2021

Completed quickly and followed instructions given. Grammar, spelling, etc. was all good as well. Thank you so much! Will hire in the future.

Research paper

23/09/2021

Very professional writer that was easy to communicate with.

Essay (any type)

23/08/2021

Writer did an excellent job on completing the discussion board assignment questions in a timely manner and the revising. I will be hiring this writer for future assignments.

Essay (any type)

23/08/2021

You can completely rely on most of the writers of Homeworkfest! They really provide a superior client experience, and the assignments are delivered on time.

Dissertation

23/08/2021

Was very satisfied with my order. It was professionally done. Thank you very much.

Essay (any type)

23/08/2021

Very well written paper. Writer completed it before the deadline as well.

Coursework

23/08/2021

Very prompt. Written as requested. Would use this writer again.

Annotated Bibliography

23/08/2021

Very impressed with the turnaround time and the attention to detail needed for the assignment.

Discussion Essay

23/08/2021

Truly impressed with the quality of the work!

Essay (any type)

23/08/2021

This writer was amazing. Great communication and followed instructions. Most importantly, the writing was well written and on time.

Journal Article

23/08/2021

This was the first time ever using this writer and it’s safe to say he did an amazing job on my essay and got an A! Will use her again for sure!

Research proposal

23/08/2021

This is a great website. The chat group is available 24/7. To me, it's the most helpful thing. They are always there to assist and they're willing to help. Price-wise it's also fair. Most of the writers are highly professional and provide great quality work. Keep up the good work.,

Coursework

23/08/2021

The paper was detailed and exact to what I had instructed. Thank you!

Discussion Essay

23/08/2021

Excellent communication skills, essay was written so beautifully and ahead of deadline. I would defo use this writer again.

Report

23/08/2021

The orders that i have placed required the writer to employ SPSS, and answer questions. The writer has done a great job because I used their work to compare to work that was already completed. I have been very please and hope to continue the same writer for future help, because they make my work a lot easier.

Essay (any type)

23/08/2021

Thank you writer ID# 110762, I will definitely hire you again. I appreciate your service and time...awesome work.

Annotated Bibliography

23/08/2021

I've used this site multiple times and I absolutely love them! The writer is my go to for amazing work and customer service is always there to help you find the best fit and price. I pay a little more for the writer but the work is well worth it.

Essay (any type)

23/08/2021

If you are scanning reviews trying to find a great tutoring service, then scan no more. This service elite!

Coursework

23/08/2021

I really love this website, excellent work so far. Will use in the near future.

Research Proposal

23/08/2021

Great writer, will definitely be using again. I received a 98 on my paper for my MBA.

Literature Review

23/08/2021

Excellent paper is done in a quick and timely manner. The writer did an amazing job of including all of my topics and much more. Thank you!

Essay (any type)

23/08/2021

Excellent communication skills, essay was written so beautifully and ahead of deadline. I would defo use this writer again.

Journal Article

23/08/2021

Consistently excellent work, helps me get rid of stuck thoughts

Essay (any type)

23/08/2021

Amazing!!! Really a wonderful job! Thank you so much!!!

Essay (any type)

23/08/2021

Always does an awesome job!

Report

23/08/2021

Homeworkfest is a great platform to get your assignments completed. They have some awesome writers and they do exactly what is asked and more. I have had nothing but good experiences since I've used Homeworkfest. Definitely recommend!!!!

Easy Testimonials

23/08/2021

I love your product! I would recommend this to anyone. What a great find!

Easy Testimonials

23/08/2021

I receieved excellent customer support, and quickly. Thank you so much!

Easy Testimonials

23/08/2021

I needed a simple, easy-to-use way to add testimonials to my website and display them. Easy Testimonials Pro did all of that and more!

Demonstrate your knowledge of testing security controls aligned with

Calculate the price of your order

Our guarantees

Money-back guarantee

Zero-plagiarism guarantee

Free-revision policy

Privacy policy

Fair-cooperation guarantee