Iām not sure itās the best start for a beginner - level tester to do security tests, they should probably focus on the learn testing aspect first. But letting them think about security is basically easy!
- What can I do to exploit this? Or How would a hacker exploit this?
You donāt need to be able to do it, if you can think of it and it would theoretically work, there is probably a loophole in there that needs to be looked at.
This totally depends on what you are doing.
I like to use:
There are so many more, but it depends what you are doing. But these are my common onces
There are so many. Iāve learned that bad organisations rather pay ransomware then invest into security. Security is not a joke and a lot of people donāt know how to act around it. So maybe itās not ābad organisationsā but the LACK of Knowledge of people. Then again, often after explaining what the damage can be, it gets neglected
Itās a dark hole in the IT - Business which nobody dares to crawl into.
Iāve seen organisations being hacked for 8+ months in my first week at the client and not a single person invested time in it earlier. (they didnāt knew) It costed the company a lot of money ā¦ A LOT. The hacker just had a backdoor file installed and was just regularly connecting to disable items in their online webshop. It finally stopped just because I spend 10 minutes on it because I was intrigued with why the webshop items were getting āautomaticallyā archived since there was no āautomatic-archiveā but I was to late, the damage had been done and the webshop closed a while after due to this, because it wasnāt getting any return value.
The Best/Worst nightmare security vulnerability stories are those which you warn a company about a security breach and they do nothing about it and they get hacked. You feel absolutely the worst since you tried to warn them but they didnāt listen, you canāt help it ā¦ but you knewā¦ .
Iāve reached out to at least 50+ companies by email about security vulnerabilities on their product/website and literally 0 ā¦ZEROā¦ replied. (not through bug-bounty-programs)
I often get a linkedin profile view from somebody at the company but nothing happens. I even tell them that Iām open to provide some guidance or do a re-test.
And sometimes after a while you can see in the news " X or Y has been hacked"
Sometimes you heard " we had an email about this but didnāt think it was legit"
The recent Okta Breach had this issue also, theyāve been informed about a vulnerability ~3 weeks before being breached but they didnāt act upon it.
So yeaā¦ the nightmare storiesā¦ I can go on and on and on ā¦