{"id":361,"date":"2015-11-08T20:32:01","date_gmt":"2015-11-08T20:32:01","guid":{"rendered":"http:\/\/nethemba.com\/cs\/?page_id=361"},"modified":"2019-08-19T10:08:18","modified_gmt":"2019-08-19T09:08:18","slug":"zakladni-penetracni-test","status":"publish","type":"page","link":"https:\/\/nethemba.com\/cs\/sluzby\/aplikacni-bezpecnost\/zakladni-penetracni-test\/","title":{"rendered":"Z\u00e1kladn\u00ed penetra\u010dn\u00ed test"},"content":{"rendered":"<p>C\u00edlem z\u00e1kladn\u00edho penetra\u010dn\u00edho testu je odhalit co nejv\u011bt\u0161\u00ed mno\u017estv\u00ed nejv\u00edce kritick\u00fdch zranitelnost\u00ed ve webov\u00e9 aplikaci nebo webov\u00e9m serveru b\u011bhem jednoho dne.<\/p>\n<p>Test je proveden pou\u017eit\u00edm na\u0161ich specializovan\u00fdch komer\u010dn\u00edch a opensource n\u00e1stroj\u016f (v\u011bt\u0161ina z nich je <a href=\"https:\/\/www.owasp.org\/index.php\/Phoenix\/Tools\">k dispozici zde<\/a>). Existence v\u0161ech vysoce-kritick\u00fdch zranitelnost\u00ed je ov\u011b\u0159ena manu\u00e1ln\u011b.<br \/>\nNa volbu nejvhodn\u011bj\u0161\u00edch n\u00e1stroj\u016f pro testov\u00e1n\u00ed zranitelnost\u00ed webov\u00e9 aplikace a serveru vyu\u017e\u00edv\u00e1me na\u0161e dlouholet\u00e9 know-how v oblasti bezpe\u010dnosti webov\u00fdch aplikac\u00ed.<\/p>\n<p>Test se skl\u00e1d\u00e1 z n\u00e1sleduj\u00edc\u00edch f\u00e1z\u00ed:<\/p>\n<ul>\n<li><strong>Sb\u011br informac\u00ed<\/strong> \u2013 o c\u00edlov\u00e9m syst\u00e9mu jsou sesb\u00edr\u00e1ny, identifikov\u00e1ny a analyzov\u00e1ny v\u0161echny dostupn\u00e9 informace, v\u010detn\u011b verze webov\u00e9ho serveru, pou\u017eit\u00fdch modul\u016f, programov\u00e9 platformy, p\u0159\u00edpadn\u011b identifikace webov\u00e9ho aplika\u010dn\u00edho firewallu a p\u0159\u00edstupov\u00fdch bod\u016f do aplikace<\/li>\n<li><strong>Enumerace a mapov\u00e1n\u00ed zranitelnost\u00ed<\/strong> \u2013 pomoc\u00ed intrusivn\u00edch metod a technik (speci\u00e1ln\u011b zkonstruovan\u00e9ho HTTP po\u017eadavku) jsou identifikov\u00e1ny potenci\u00e1ln\u00ed slabiny (pou\u017eit\u00e9 jsou speci\u00e1ln\u00ed bezpe\u010dnostn\u00ed scannery a &#8222;fault-injection proxies&#8220;)<\/li>\n<li><strong>Manu\u00e1ln\u00ed ov\u011b\u0159en\u00ed vysoce kritick\u00fdch zranitelnost\u00ed<\/strong> (ve snaze p\u0159edej\u00edt fale\u0161n\u00fdm poplach\u016fm)<\/li>\n<\/ul>\n<p><strong>Vlastnosti:<\/strong><\/p>\n<ul>\n<li>odhaluje nejv\u00e1\u017en\u011bj\u0161\u00ed webov\u00e9 zranitelnosti (speci\u00e1ln\u011b takov\u00e9, kter\u00e9 jsou zap\u0159\u00ed\u010din\u011bny nedostate\u010dn\u00fdm o\u0161et\u0159ov\u00e1n\u00edm vstup\u016f jako SQL Injections, XSS \/ CSRF, p\u0159ete\u010den\u00ed buffer\u016f, atd..) a kter\u00e9 mohou b\u00fdt odhaleny pln\u011b automatizovan\u00fdm zp\u016fsobem<\/li>\n<li>pro detailn\u011bj\u0161\u00ed a hloubkov\u00e9 testov\u00e1n\u00ed, kter\u00e9 zahrnuje i manu\u00e1ln\u00ed ov\u011b\u0159en\u00ed doporu\u010dujeme realizovat n\u00e1\u0161 <a href=\"https:\/\/nethemba.com\/cs\/sluzby\/aplikacni-bezpecnost\/standardni-penetracni-test\/\">standardn\u00ed penetra\u010dn\u00ed test<\/a> nebo <a href=\"https:\/\/nethemba.com\/cs\/sluzby\/aplikacni-bezpecnost\/detailni-bezpecnostni-audit\/\">detailn\u00ed bezpe\u010dnostn\u00ed audit webov\u00e9 aplikace<\/a>, kter\u00fd obsahuje i praktickou &#8222;hackerskou demonstraci&#8220; zneu\u017eit\u00ed odhalen\u00fdch kritick\u00fdch zranitelnost\u00ed (tvorba exploit\u016f, dump datab\u00e1ze, demonstrace zneu\u017eit\u00ed CSRF \/ XSS \/ session fixation zranitelnost\u00ed atd.), jednodenn\u00ed setk\u00e1n\u00ed s v\u00fdvoj\u00e1\u0159i dan\u00e9 aplikace a kompletn\u00ed bezpe\u010dnostn\u00ed otestov\u00e1n\u00ed aplikace podle <a href=\"https:\/\/www.owasp.org\/index.php\/OWASP_Testing_Project\">testovac\u00ed p\u0159\u00edru\u010dky OWASP<\/a><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>C\u00edlem z\u00e1kladn\u00edho penetra\u010dn\u00edho testu je odhalit co nejv\u011bt\u0161\u00ed mno\u017estv\u00ed nejv\u00edce kritick\u00fdch zranitelnost\u00ed ve webov\u00e9 aplikaci nebo webov\u00e9m serveru b\u011bhem jednoho dne. Test je proveden pou\u017eit\u00edm na\u0161ich specializovan\u00fdch komer\u010dn\u00edch a opensource n\u00e1stroj\u016f (v\u011bt\u0161ina z nich je k dispozici zde). Existence v\u0161ech vysoce-kritick\u00fdch zranitelnost\u00ed je ov\u011b\u0159ena manu\u00e1ln\u011b. Na volbu nejvhodn\u011bj\u0161\u00edch n\u00e1stroj\u016f pro testov\u00e1n\u00ed zranitelnost\u00ed webov\u00e9 aplikace a [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"parent":353,"menu_order":1,"comment_status":"closed","ping_status":"closed","template":"","meta":{"inline_featured_image":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"class_list":["post-361","page","type-page","status-publish","hentry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Z\u00e1kladn\u00ed penetra\u010dn\u00ed test - Nethemba - Etick\u00fd hacking<\/title>\n<meta name=\"description\" content=\"Penetra\u010dn\u00ed test odhaluje nejv\u00e1\u017en\u011bj\u0161\u00ed webov\u00e9 zranitelnosti (zap\u0159\u00ed\u010din\u011bny nedostate\u010dn\u00fdm o\u0161et\u0159ov\u00e1n\u00edm vstup\u016f jako SQL Injections, XSS \/ CSRF, p\u0159ete\u010den\u00ed buffer\u016f, atd..)\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/nethemba.com\/cs\/sluzby\/aplikacni-bezpecnost\/zakladni-penetracni-test\/\" \/>\n<meta property=\"og:locale\" content=\"cs_CZ\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Z\u00e1kladn\u00ed penetra\u010dn\u00ed test - Nethemba - Etick\u00fd hacking\" \/>\n<meta property=\"og:description\" content=\"Penetra\u010dn\u00ed test odhaluje nejv\u00e1\u017en\u011bj\u0161\u00ed webov\u00e9 zranitelnosti (zap\u0159\u00ed\u010din\u011bny nedostate\u010dn\u00fdm o\u0161et\u0159ov\u00e1n\u00edm vstup\u016f jako SQL Injections, XSS \/ CSRF, p\u0159ete\u010den\u00ed buffer\u016f, atd..)\" \/>\n<meta property=\"og:url\" content=\"https:\/\/nethemba.com\/cs\/sluzby\/aplikacni-bezpecnost\/zakladni-penetracni-test\/\" \/>\n<meta property=\"og:site_name\" content=\"Nethemba\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/nethemba\" \/>\n<meta property=\"article:modified_time\" content=\"2019-08-19T09:08:18+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@nethemba\" \/>\n<meta name=\"twitter:label1\" content=\"Odhadovan\u00e1 doba \u010dten\u00ed\" \/>\n\t<meta name=\"twitter:data1\" content=\"2 minuty\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/sluzby\\\/aplikacni-bezpecnost\\\/zakladni-penetracni-test\\\/\",\"url\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/sluzby\\\/aplikacni-bezpecnost\\\/zakladni-penetracni-test\\\/\",\"name\":\"Z\u00e1kladn\u00ed penetra\u010dn\u00ed test - Nethemba - Etick\u00fd hacking\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/nethemba.com\\\/de\\\/#website\"},\"datePublished\":\"2015-11-08T20:32:01+00:00\",\"dateModified\":\"2019-08-19T09:08:18+00:00\",\"description\":\"Penetra\u010dn\u00ed test odhaluje nejv\u00e1\u017en\u011bj\u0161\u00ed webov\u00e9 zranitelnosti (zap\u0159\u00ed\u010din\u011bny nedostate\u010dn\u00fdm o\u0161et\u0159ov\u00e1n\u00edm vstup\u016f jako SQL Injections, XSS \\\/ CSRF, p\u0159ete\u010den\u00ed buffer\u016f, atd..)\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/sluzby\\\/aplikacni-bezpecnost\\\/zakladni-penetracni-test\\\/#breadcrumb\"},\"inLanguage\":\"cs\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/nethemba.com\\\/cs\\\/sluzby\\\/aplikacni-bezpecnost\\\/zakladni-penetracni-test\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/sluzby\\\/aplikacni-bezpecnost\\\/zakladni-penetracni-test\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/home-new-2025\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Slu\u017eby\",\"item\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/sluzby\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Aplika\u010dn\u00ed bezpe\u010dnost\",\"item\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/sluzby\\\/aplikacni-bezpecnost\\\/\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"Z\u00e1kladn\u00ed penetra\u010dn\u00ed test\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/nethemba.com\\\/de\\\/#website\",\"url\":\"https:\\\/\\\/nethemba.com\\\/de\\\/\",\"name\":\"Nethemba\",\"description\":\"We care about your security\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/nethemba.com\\\/de\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"cs\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Z\u00e1kladn\u00ed penetra\u010dn\u00ed test - Nethemba - Etick\u00fd hacking","description":"Penetra\u010dn\u00ed test odhaluje nejv\u00e1\u017en\u011bj\u0161\u00ed webov\u00e9 zranitelnosti (zap\u0159\u00ed\u010din\u011bny nedostate\u010dn\u00fdm o\u0161et\u0159ov\u00e1n\u00edm vstup\u016f jako SQL Injections, XSS \/ CSRF, p\u0159ete\u010den\u00ed buffer\u016f, atd..)","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/nethemba.com\/cs\/sluzby\/aplikacni-bezpecnost\/zakladni-penetracni-test\/","og_locale":"cs_CZ","og_type":"article","og_title":"Z\u00e1kladn\u00ed penetra\u010dn\u00ed test - Nethemba - Etick\u00fd hacking","og_description":"Penetra\u010dn\u00ed test odhaluje nejv\u00e1\u017en\u011bj\u0161\u00ed webov\u00e9 zranitelnosti (zap\u0159\u00ed\u010din\u011bny nedostate\u010dn\u00fdm o\u0161et\u0159ov\u00e1n\u00edm vstup\u016f jako SQL Injections, XSS \/ CSRF, p\u0159ete\u010den\u00ed buffer\u016f, atd..)","og_url":"https:\/\/nethemba.com\/cs\/sluzby\/aplikacni-bezpecnost\/zakladni-penetracni-test\/","og_site_name":"Nethemba","article_publisher":"https:\/\/www.facebook.com\/nethemba","article_modified_time":"2019-08-19T09:08:18+00:00","twitter_card":"summary_large_image","twitter_site":"@nethemba","twitter_misc":{"Odhadovan\u00e1 doba \u010dten\u00ed":"2 minuty"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/nethemba.com\/cs\/sluzby\/aplikacni-bezpecnost\/zakladni-penetracni-test\/","url":"https:\/\/nethemba.com\/cs\/sluzby\/aplikacni-bezpecnost\/zakladni-penetracni-test\/","name":"Z\u00e1kladn\u00ed penetra\u010dn\u00ed test - Nethemba - Etick\u00fd hacking","isPartOf":{"@id":"https:\/\/nethemba.com\/de\/#website"},"datePublished":"2015-11-08T20:32:01+00:00","dateModified":"2019-08-19T09:08:18+00:00","description":"Penetra\u010dn\u00ed test odhaluje nejv\u00e1\u017en\u011bj\u0161\u00ed webov\u00e9 zranitelnosti (zap\u0159\u00ed\u010din\u011bny nedostate\u010dn\u00fdm o\u0161et\u0159ov\u00e1n\u00edm vstup\u016f jako SQL Injections, XSS \/ CSRF, p\u0159ete\u010den\u00ed buffer\u016f, atd..)","breadcrumb":{"@id":"https:\/\/nethemba.com\/cs\/sluzby\/aplikacni-bezpecnost\/zakladni-penetracni-test\/#breadcrumb"},"inLanguage":"cs","potentialAction":[{"@type":"ReadAction","target":["https:\/\/nethemba.com\/cs\/sluzby\/aplikacni-bezpecnost\/zakladni-penetracni-test\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/nethemba.com\/cs\/sluzby\/aplikacni-bezpecnost\/zakladni-penetracni-test\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/nethemba.com\/cs\/home-new-2025\/"},{"@type":"ListItem","position":2,"name":"Slu\u017eby","item":"https:\/\/nethemba.com\/cs\/sluzby\/"},{"@type":"ListItem","position":3,"name":"Aplika\u010dn\u00ed bezpe\u010dnost","item":"https:\/\/nethemba.com\/cs\/sluzby\/aplikacni-bezpecnost\/"},{"@type":"ListItem","position":4,"name":"Z\u00e1kladn\u00ed penetra\u010dn\u00ed test"}]},{"@type":"WebSite","@id":"https:\/\/nethemba.com\/de\/#website","url":"https:\/\/nethemba.com\/de\/","name":"Nethemba","description":"We care about your security","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/nethemba.com\/de\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"cs"}]}},"_links":{"self":[{"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/pages\/361","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/comments?post=361"}],"version-history":[{"count":0,"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/pages\/361\/revisions"}],"up":[{"embeddable":true,"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/pages\/353"}],"wp:attachment":[{"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/media?parent=361"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}