{"id":357,"date":"2015-11-08T20:30:56","date_gmt":"2015-11-08T20:30:56","guid":{"rendered":"http:\/\/nethemba.com\/sk\/?page_id=357"},"modified":"2019-08-05T12:42:50","modified_gmt":"2019-08-05T11:42:50","slug":"zakladny-penetracny-test-aplikacie","status":"publish","type":"page","link":"https:\/\/nethemba.com\/sk\/sluzby\/aplikacna-bezpecnost\/zakladny-penetracny-test-aplikacie\/","title":{"rendered":"Z\u00e1kladn\u00fd penetra\u010dn\u00fd test aplik\u00e1cie"},"content":{"rendered":"<p>Cie\u013eom z\u00e1kladn\u00e9ho penetra\u010dn\u00e9ho testu je odhali\u0165 \u010do najv\u00e4\u010d\u0161ie mno\u017estvo najviac kritick\u00fdch zranite\u013enost\u00ed vo webovej aplik\u00e1cii alebo webovom serveri behom jedn\u00e9ho d\u0148a.<\/p>\n<p>Test je vykonan\u00fd pou\u017eit\u00edm na\u0161ich \u0161pecializovan\u00fdch komer\u010dn\u00fdch a opensource n\u00e1strojov (v\u00e4\u010d\u0161ina z nich je <a href=\"https:\/\/www.owasp.org\/index.php\/Phoenix\/Tools\">k dispoz\u00edcii tu<\/a>). Existencia v\u0161etk\u00fdch vysoko kritick\u00fdch zranite\u013enost\u00ed je overen\u00e1 manu\u00e1lne.<br \/>\nNa vo\u013ebu najvhodnej\u0161\u00edch n\u00e1strojov na testovanie zranite\u013enost\u00ed webovej aplik\u00e1cie a servera vyu\u017e\u00edvame na\u0161e dlhoro\u010dn\u00e9 know-how v oblasti bezpe\u010dnosti webov\u00fdch aplik\u00e1ci\u00ed.<\/p>\n<p>Test pozost\u00e1va z nasleduj\u00facich f\u00e1z:<\/p>\n<ul>\n<li><strong>Zbieranie inform\u00e1ci\u00ed <\/strong>\u2013 o cie\u013eovom syst\u00e9me s\u00fa zozbieran\u00e9, identifikovan\u00e9 a analyzovan\u00e9 v\u0161etky inform\u00e1cie, vr\u00e1tane verzie webov\u00e9ho serveru, pou\u017eit\u00fdch modulov, programovej platformy, WAF a pr\u00edstupov\u00fdch bodov do aplik\u00e1cie<\/li>\n<li><strong>Enumerovanie a mapovanie zranite\u013enost\u00ed <\/strong>\u2013 pomocou intruz\u00edvnych met\u00f3d a techn\u00edk (\u0161peci\u00e1lne skon\u0161truovan\u00e9 HTTP \u017eiadosti) s\u00fa identifikovan\u00e9 potenci\u00e1lne slabiny (pou\u017eit\u00e9 s\u00fa \u0161peci\u00e1lne bezpe\u010dnostn\u00e9 scannery, &#8222;fault-injection proxies&#8220;)<\/li>\n<li><strong>Manu\u00e1lne overenie vysoko kritick\u00fdch zranite\u013enost\u00ed<\/strong> (v snahe pred\u00eds\u0165 falo\u0161n\u00fdm poplachom)<\/li>\n<\/ul>\n<p><strong>Vlastnosti:<\/strong><\/p>\n<ul>\n<li>odha\u013euje najv\u00e1\u017enej\u0161ie webov\u00e9 zranite\u013enosti (\u0161peci\u00e1lne tak\u00e9, ktor\u00e9 s\u00fa zapr\u00ed\u010dinen\u00e9 nedostato\u010dn\u00fdm o\u0161etrovan\u00edm vstupov ako SQL injections, XSS\/CSRF, prete\u010denie buffrov, at\u010f.), ktor\u00e9 m\u00f4\u017eu by\u0165 odhalen\u00e9 plne automatizovan\u00fdm sp\u00f4sobom<\/li>\n<li>pre detailnej\u0161ie a h\u013abkovej\u0161ie testovanie, ktor\u00e9 zah\u0155\u0148a aj manu\u00e1lne overenie odpor\u00fa\u010dame realizova\u0165 n\u00e1\u0161 <a href=\"https:\/\/nethemba.com\/sk\/sluzby\/aplikacna-bezpecnost\/standardny-penetracny-test\/\">\u0161tandardn\u00fd penetra\u010dn\u00fd test<\/a> alebo <a href=\"https:\/\/nethemba.com\/sk\/sluzby\/aplikacna-bezpecnost\/detailny-bezpecnostny-audit\/\">detailn\u00fd bezpe\u010dnostn\u00fd audit webovej aplik\u00e1cie<\/a>, ktor\u00fd obsahuje aj praktick\u00fa &#8222;hackersk\u00fa demon\u0161tr\u00e1ciu&#8220; zneu\u017eitia odhalen\u00fdch kritick\u00fdch zranite\u013enost\u00ed (tvorba exploitov, dump datab\u00e1zy, demon\u0161tr\u00e1cia zneu\u017eitia CSRF\/XSS\/session fixation zranite\u013enost\u00ed at\u010f), jednod\u0148ov\u00e9 stretnutie s v\u00fdvoj\u00e1rmi danej aplik\u00e1cie a kompletn\u00e9 bezpe\u010dnostn\u00e9 otestovanie aplik\u00e1cie pod\u013ea <a href=\"https:\/\/www.owasp.org\/index.php\/OWASP_Testing_Project\">testovacej pr\u00edru\u010dky OWASP<\/a><\/li>\n<\/ul>\n<p><strong>Vhodn\u00e9 pre:<\/strong><\/p>\n<ul>\n<li>mal\u00e9 a jednoduch\u00e9 webov\u00e9 aplik\u00e1cie a webov\u00e9 str\u00e1nky pre mal\u00fdch z\u00e1kazn\u00edkov<\/li>\n<li>pravideln\u00e9 automatizovan\u00e9 testovanie (s cie\u013eom odhali\u0165 nov\u00e9 zranite\u013enosti a ch\u00fdbaj\u00face bezpe\u010dnostn\u00e9 z\u00e1platy)<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Cie\u013eom z\u00e1kladn\u00e9ho penetra\u010dn\u00e9ho testu je odhali\u0165 \u010do najv\u00e4\u010d\u0161ie mno\u017estvo najviac kritick\u00fdch zranite\u013enost\u00ed vo webovej aplik\u00e1cii alebo webovom serveri behom jedn\u00e9ho d\u0148a. Test je vykonan\u00fd pou\u017eit\u00edm na\u0161ich \u0161pecializovan\u00fdch komer\u010dn\u00fdch a opensource n\u00e1strojov (v\u00e4\u010d\u0161ina z nich je k dispoz\u00edcii tu). Existencia v\u0161etk\u00fdch vysoko kritick\u00fdch zranite\u013enost\u00ed je overen\u00e1 manu\u00e1lne. Na vo\u013ebu najvhodnej\u0161\u00edch n\u00e1strojov na testovanie zranite\u013enost\u00ed webovej aplik\u00e1cie [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"parent":351,"menu_order":1,"comment_status":"closed","ping_status":"closed","template":"","meta":{"inline_featured_image":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"class_list":["post-357","page","type-page","status-publish","hentry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Z\u00e1kladn\u00fd penetra\u010dn\u00fd test aplik\u00e1cie - Nethemba - IT bezpe\u010dnos\u0165<\/title>\n<meta name=\"description\" content=\"Cie\u013eom penetra\u010dn\u00e9ho testu je odhali\u0165 \u010do najv\u00e4\u010d\u0161ie mno\u017estvo najviac kritick\u00fdch zranite\u013enost\u00ed vo webovej aplik\u00e1cii alebo webovom serveri behom jedn\u00e9ho d\u0148a.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/nethemba.com\/sk\/sluzby\/aplikacna-bezpecnost\/zakladny-penetracny-test-aplikacie\/\" \/>\n<meta property=\"og:locale\" content=\"sk_SK\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Z\u00e1kladn\u00fd penetra\u010dn\u00fd test aplik\u00e1cie - Nethemba - IT bezpe\u010dnos\u0165\" \/>\n<meta property=\"og:description\" content=\"Cie\u013eom penetra\u010dn\u00e9ho testu je odhali\u0165 \u010do najv\u00e4\u010d\u0161ie mno\u017estvo najviac kritick\u00fdch zranite\u013enost\u00ed vo webovej aplik\u00e1cii alebo webovom serveri behom jedn\u00e9ho d\u0148a.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/nethemba.com\/sk\/sluzby\/aplikacna-bezpecnost\/zakladny-penetracny-test-aplikacie\/\" \/>\n<meta property=\"og:site_name\" content=\"Nethemba\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/nethemba\" \/>\n<meta property=\"article:modified_time\" content=\"2019-08-05T11:42:50+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@nethemba\" \/>\n<meta name=\"twitter:label1\" content=\"Predpokladan\u00fd \u010das \u010d\u00edtania\" \/>\n\t<meta name=\"twitter:data1\" content=\"2 min\u00faty\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/nethemba.com\\\/sk\\\/sluzby\\\/aplikacna-bezpecnost\\\/zakladny-penetracny-test-aplikacie\\\/\",\"url\":\"https:\\\/\\\/nethemba.com\\\/sk\\\/sluzby\\\/aplikacna-bezpecnost\\\/zakladny-penetracny-test-aplikacie\\\/\",\"name\":\"Z\u00e1kladn\u00fd penetra\u010dn\u00fd test aplik\u00e1cie - Nethemba - IT bezpe\u010dnos\u0165\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/nethemba.com\\\/de\\\/#website\"},\"datePublished\":\"2015-11-08T20:30:56+00:00\",\"dateModified\":\"2019-08-05T11:42:50+00:00\",\"description\":\"Cie\u013eom penetra\u010dn\u00e9ho testu je odhali\u0165 \u010do najv\u00e4\u010d\u0161ie mno\u017estvo najviac kritick\u00fdch zranite\u013enost\u00ed vo webovej aplik\u00e1cii alebo webovom serveri behom jedn\u00e9ho d\u0148a.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/nethemba.com\\\/sk\\\/sluzby\\\/aplikacna-bezpecnost\\\/zakladny-penetracny-test-aplikacie\\\/#breadcrumb\"},\"inLanguage\":\"sk-SK\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/nethemba.com\\\/sk\\\/sluzby\\\/aplikacna-bezpecnost\\\/zakladny-penetracny-test-aplikacie\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/nethemba.com\\\/sk\\\/sluzby\\\/aplikacna-bezpecnost\\\/zakladny-penetracny-test-aplikacie\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/nethemba.com\\\/sk\\\/domov\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Slu\u017eby\",\"item\":\"https:\\\/\\\/nethemba.com\\\/sk\\\/sluzby\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Aplika\u010dn\u00e1 bezpe\u010dnos\u0165\",\"item\":\"https:\\\/\\\/nethemba.com\\\/sk\\\/sluzby\\\/aplikacna-bezpecnost\\\/\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"Z\u00e1kladn\u00fd penetra\u010dn\u00fd test aplik\u00e1cie\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/nethemba.com\\\/de\\\/#website\",\"url\":\"https:\\\/\\\/nethemba.com\\\/de\\\/\",\"name\":\"Nethemba\",\"description\":\"We care about your security\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/nethemba.com\\\/de\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"sk-SK\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Z\u00e1kladn\u00fd penetra\u010dn\u00fd test aplik\u00e1cie - Nethemba - IT bezpe\u010dnos\u0165","description":"Cie\u013eom penetra\u010dn\u00e9ho testu je odhali\u0165 \u010do najv\u00e4\u010d\u0161ie mno\u017estvo najviac kritick\u00fdch zranite\u013enost\u00ed vo webovej aplik\u00e1cii alebo webovom serveri behom jedn\u00e9ho d\u0148a.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/nethemba.com\/sk\/sluzby\/aplikacna-bezpecnost\/zakladny-penetracny-test-aplikacie\/","og_locale":"sk_SK","og_type":"article","og_title":"Z\u00e1kladn\u00fd penetra\u010dn\u00fd test aplik\u00e1cie - Nethemba - IT bezpe\u010dnos\u0165","og_description":"Cie\u013eom penetra\u010dn\u00e9ho testu je odhali\u0165 \u010do najv\u00e4\u010d\u0161ie mno\u017estvo najviac kritick\u00fdch zranite\u013enost\u00ed vo webovej aplik\u00e1cii alebo webovom serveri behom jedn\u00e9ho d\u0148a.","og_url":"https:\/\/nethemba.com\/sk\/sluzby\/aplikacna-bezpecnost\/zakladny-penetracny-test-aplikacie\/","og_site_name":"Nethemba","article_publisher":"https:\/\/www.facebook.com\/nethemba","article_modified_time":"2019-08-05T11:42:50+00:00","twitter_card":"summary_large_image","twitter_site":"@nethemba","twitter_misc":{"Predpokladan\u00fd \u010das \u010d\u00edtania":"2 min\u00faty"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/nethemba.com\/sk\/sluzby\/aplikacna-bezpecnost\/zakladny-penetracny-test-aplikacie\/","url":"https:\/\/nethemba.com\/sk\/sluzby\/aplikacna-bezpecnost\/zakladny-penetracny-test-aplikacie\/","name":"Z\u00e1kladn\u00fd penetra\u010dn\u00fd test aplik\u00e1cie - Nethemba - IT bezpe\u010dnos\u0165","isPartOf":{"@id":"https:\/\/nethemba.com\/de\/#website"},"datePublished":"2015-11-08T20:30:56+00:00","dateModified":"2019-08-05T11:42:50+00:00","description":"Cie\u013eom penetra\u010dn\u00e9ho testu je odhali\u0165 \u010do najv\u00e4\u010d\u0161ie mno\u017estvo najviac kritick\u00fdch zranite\u013enost\u00ed vo webovej aplik\u00e1cii alebo webovom serveri behom jedn\u00e9ho d\u0148a.","breadcrumb":{"@id":"https:\/\/nethemba.com\/sk\/sluzby\/aplikacna-bezpecnost\/zakladny-penetracny-test-aplikacie\/#breadcrumb"},"inLanguage":"sk-SK","potentialAction":[{"@type":"ReadAction","target":["https:\/\/nethemba.com\/sk\/sluzby\/aplikacna-bezpecnost\/zakladny-penetracny-test-aplikacie\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/nethemba.com\/sk\/sluzby\/aplikacna-bezpecnost\/zakladny-penetracny-test-aplikacie\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/nethemba.com\/sk\/domov\/"},{"@type":"ListItem","position":2,"name":"Slu\u017eby","item":"https:\/\/nethemba.com\/sk\/sluzby\/"},{"@type":"ListItem","position":3,"name":"Aplika\u010dn\u00e1 bezpe\u010dnos\u0165","item":"https:\/\/nethemba.com\/sk\/sluzby\/aplikacna-bezpecnost\/"},{"@type":"ListItem","position":4,"name":"Z\u00e1kladn\u00fd penetra\u010dn\u00fd test aplik\u00e1cie"}]},{"@type":"WebSite","@id":"https:\/\/nethemba.com\/de\/#website","url":"https:\/\/nethemba.com\/de\/","name":"Nethemba","description":"We care about your security","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/nethemba.com\/de\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"sk-SK"}]}},"_links":{"self":[{"href":"https:\/\/nethemba.com\/sk\/wp-json\/wp\/v2\/pages\/357","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nethemba.com\/sk\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/nethemba.com\/sk\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/nethemba.com\/sk\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/nethemba.com\/sk\/wp-json\/wp\/v2\/comments?post=357"}],"version-history":[{"count":0,"href":"https:\/\/nethemba.com\/sk\/wp-json\/wp\/v2\/pages\/357\/revisions"}],"up":[{"embeddable":true,"href":"https:\/\/nethemba.com\/sk\/wp-json\/wp\/v2\/pages\/351"}],"wp:attachment":[{"href":"https:\/\/nethemba.com\/sk\/wp-json\/wp\/v2\/media?parent=357"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}