pen-testPrecept penetration tests on web servers cover some of the following issues:

• Server Build and Configuration Vulnerabilities exposed to the Internet (e.g. remote exploit of an unnecessary service exposed to the Internet)
• Web Server Build and Configuration Issues exposed to the Internet (e.g. remote exploit due to lack of patching)
• Input Validation Issues including
o SQL Injection (e.g. to download or modify backend database or run commands on the server)
o Command Injection (e.g. to run a command on the system directly or indirectly)
o Cross-Site Scripting (e.g. reflected or stored XSS to perform Identify theft)
• Authentication Issues (e.g. bypassing authentication).
• Authorization Issues (e.g. ability to view or manipulate other users data)
• Access Control Issues (e.g. masquerading as a different user).
• Password Strength and Brute-Force Issues (e.g. password lockout/reset issues)
• Session Management Issues (e.g. session predictability, hi-jacking or lack of session management)
• Parameter tampering (e.g. ability to manipulate values on the server for gain, or to gain access to unauthorized data).
• Administrative Processes and Issues (e.g. ability to escalate privileged commands or connect to administrative interface).
• Error Handling Flaws and Information Disclosure
• SSL Communications Flaws including the use of weak ciphers, algorithms and known issues (heartbleed, poodle etc).
• Secure storage flaws such as sensitive data in client side code, unencrypted sensitive data on the database, insecure storage of passwords.
• Secure resource access flaws such as path traversal
• Other tests:
• XSS (Reflected and Stored)
• File Path Traversal
• HTTP Header Injection.
• Header Manipulation
• Server Level Issues
• Authentication Issues (e.g. bypassing authentication).
• Authorization Issues (e.g. ability to view or manipulate other users data)
• Access Control Issues (e.g. masquerading as a different user).
• Password Strength and Brute-Force Issues (e.g. password lockout/reset issues)
• Session Management Issues (e.g. session predictability, hi-jacking or lack of session management)
• Parameter tampering (e.g. ability to manipulate values on the server for gain, or to gain access to unauthorized data).
• Administrative Processes and Issues (e.g. ability to escalate privileged commands or connect to administrative interface).
• Analysis of Error Codes
• SSL/TLS Testing (SSL Version, Algorithms, Key length, Digital Cert. Validity)
• Application Infrastructure Configuration Management Testing
• Application Configuration Management Testing
• Testing for File Extensions Handling
• Old, backup and unreferenced files
• Application Admin Interfaces
• Testing for HTTP Methods and XST
• Credentials transport over an encrypted channel
• Testing for user enumeration
• Testing for Guessable (Dictionary) User Account
• Brute Force Testing
• Testing for bypassing authentication schema
• Testing for vulnerable remember password and pwd reset
• Testing for Logout and Browser Cache Management
• Testing for CAPTCHA
• Testing Multiple Factors Authentication
• Testing for Race Conditions
• Testing for Session Management Schema
• Testing for Cookies attributes
• Testing for Session Fixation
• Testing for Exposed Session Variables
• Testing for CSRF
• Testing for Path Traversal
• Testing for bypassing authorization schema
• Testing for Privilege Escalation for Cross Site Flashing
• SQL Injection (Error Based and Blind)
• LDAP Injection (Error Based and Blind)
• ORM Injection
• XML Injection
• SSI Injection
• XPath Injection
• IMAP/SMTP Injection
• Code Injection
• OS Commanding/Command Injection
• Buffer overflow
• Incubated vulnerability Testing
• Testing for HTTP Splitting/Smuggling
• Testing for SQL Wildcard Attacks
• Locking Customer Accounts
• Testing for DoS Buffer Overflows
• User Specified Object Allocation
• User Input as a Loop Counter
• Writing User Provided Data to Disk
• Failure to Release Resources
• Storing too Much Data in Session
• WS Information Gathering
• Testing WSDL
• XML Structural Testing
• XML content-level Testing
• HTTP GET parameters/REST Testing
• Naughty SOAP attachments
• Replay Testing
• AJAX Vulnerabilities
• AJAX Testing`