| The first cause for websites being hacked is the lack | | | | automated by some programsand scripts. This is the |
| of knowledge oftheir webmasters. | | | | most important and crucial task in every attack |
| Hackers or even wannabe hackers can modify your | | | | attempt. |
| website home page,steal your website profits and | | | | And this is what an ethical hacker can't fail. |
| fame by just using ready to be downloadedexploits | | | | The second step is to get a working exploit to take |
| published into trusted and untrusted internet security | | | | advantage of the vulnerablityfound in step 1. Here is |
| portals. | | | | where protection and fixes should take place to |
| Wether you have a basic knowledge of web site | | | | *prevent* the attack and notto just cure after the |
| publishing or you arean experienced webmaster the | | | | disaster. Ethical hackers in this case would be able |
| only thing to protect yourself from hackers attacksis | | | | tomodify source codes to cover the holes or just |
| ethical hacking. | | | | reduce the success rate of the attack dramatically. |
| Ethical hacking means understanding your enemy | | | | I would strongly advise to work on the first step |
| mind, skills, intentions andstrength, up to take the | | | | since it is the most simpleto master wether you're |
| successful countermeasures that will save your daily | | | | not expert into security field or you just don't have |
| hard jobinto developing a successful and trusted web | | | | enough money to hirean experienced ethical hacker. |
| platform. | | | | Internet security knowledge is what can save your |
| Image damages causing shareholders and customers | | | | site with a very cheap price. |
| complaints, not to mention | | | | At the most basic level this can be achieved by |
| 6 figures money loss, is what led many big | | | | keeping yourself informed on yourwebsites scripts |
| corporations to hire dozens of ethical hackersto keep | | | | well-known vulnerabilities, available patches |
| their networks and web site safe from "bad" | | | | andsecurity best practices. |
| hackers. | | | | Moreover the understanding of basic attacking |
| In this article I am going to focus on the following | | | | vectors like Cross site scripting or SQL Injection |
| two questions: | | | | willkeep you safe from a big number of wannabe |
| What do ethical hackers do? | | | | hackers that you will be able todefeat...with your |
| What can I do to protect my website if I am not an | | | | knowledge! |
| ethical hacker? | | | | So next time you will see some suspicious activity in |
| The first step taken by hackers, should they be | | | | your website log you will be laughing at it,since not a |
| ethical or evil, is to scan yourweb application for | | | | dummy tool but your own knowledge as ethical |
| known vulnerabilities. This can be achieved through | | | | hacker will be protecting you. |
| apenetration testing process that can be manual or | | | | |