Penetration Testing Web Services

Nettitude tests Web Services through manipulation of parameters identified in WSDL configuration files. These files provide a roadmap of the types of SOAP requests that a Web Service is configured to respond to. Web Services can still be susceptible to SQL, LDAP, OS and XPATH injection, Blind Injection and Buffer overflows. XML based resources re frequently configured without any form of access control. As a consequence, if a web service allows user input to be included in an query, then it becomes a strong target for an injection based attack.

Due to the fact that many Web Services provide critical business functions, this makes them a strong target for Internet attackers. Web Services can also be attacks outside of the WSDL configuration file. It is possible to conduct authentication based attacks, XML structural attacks, XML content-level attacks, HTTP GET parameter/REST attacks and SOAP attachment attacks. All of these attack vectors can allow an attacker to gain access to privileged data and even gain root/administrator access to underlying resources.

Nettitude provides Web Service testing for Apache Axis/Azis2, Zend, Microsoft WCF and Silverlight and can test BPEL services, WCF, REST, SOAP over HTTP, SOAP over TCP and SOAP over MQ.
Nettitude provide Web Service Penetration Testing based on proven methodologies and techniques. Using a series of commercial tools, open source tools and in-house built scripts, Nettitude’s security testers provide security testing techniques that identify your security vulnerabilities before Internet hackers find them.

Web Service Penetration Testing requires appropriate scoping. As a consequence, it is always appropriate to undertake diligent scoping to ensure that Web Service Assessments are conducted in accordance with client requirements.