Hacking a Web Application by admin | Jun 18, 2012 | Blog | 0 commentsThis video shows the process of gaining root access to a web server by hacking the web application, performed by Aerstone’s lead penetration tester Curt Stapleton. The demo covers discovery, mapping the app, defeating the login, elevating privileges, and gaining root access on the web server.Web Application Testing Techniques demonstrated:Port scanningWeb App Vuln scanningInfo Gathering and ReconSQL InjectionRemote Execution of CommandsGood Ole’ Fashion CreativityNote: The attack/test was performed on a target image in a controlled environment. http:///wp-content/uploads/2012/06/Web-Attack.mp4