Test Principles and Methods
WebService is a cross-programming language and cross-operating system platform remote calling technology. XML+XSD, SOAP (Simple Object Access Protocol) and WSDL (Web Services Description Language) are the three major technologies that constitute the WebService platform, among which XML+XSD is used to describe and express the data to be transmitted; SOAP is used to exchange XML encoded information A lightweight protocol, generally using XML or XSD as a carrier, sends requests and receives results through the HTTP protocol, and the SOAP protocol will add some specific HTTP message headers on the basis of the HTTP protocol; WSDL is an XML-based protocol used to describe Web The language of Services and their functions, parameters, and return values.
Through the above description, we can know that WebService is an application that exposes an API that can be called through the Web to the outside world. This API receives the parameters entered by the user, and then returns the relevant data content. If a WebService fully trusts user input without filtering, it may lead to SOL injection vulnerabilities.
Testing process
As shown in the figure, before the test, the attacker finds the WebService link of the server through crawlers or directory scanning, and then uses the Web Services Editor function of WVS (Web Vulnerability Scanner) to import various interface functions, and uses keywords (such as Get, Exec ) Locate the relevant interface functions, and test the input parameters of each interface function (such as SOL injection, file upload, etc.) through HTTPEditor. If the expected effect occurs (such as database error reporting, different delays, etc.), there is a loophole.
Step 1: Find the server's WebService