index.php

<?php
	require('includes/functions.php');
	echo getHeader('Homepage');
?>

    <!-- Main jumbotron for a primary marketing message or call to action -->
    <div class="jumbotron">
        <div class="container">
            <h1>Web Security Fundamentals</h1>
        </div>
    </div>

    <div class="container homepage">
        <!-- Example row of columns -->
        <div class="row">
            <div class="col-md-12">
                <div class="col-md-4">
					<div class="panel panel-default">
						<div class="panel-heading">
							<h4>Cross-Site Scripting (XSS)</h4>
						</div>
						<div class="panel-body">
							<p>Cross-Site Scripting (XSS) attacks are a type of injection, in which malicious scripts are injected into otherwise benign and trusted web sites. XSS attacks occur when an attacker uses a web application to send malicious code.</p>
						</div>
						<div class="panel-footer">
							<p><a class="btn btn-default" href="/cross-site-scripting" role="button">View demonstration &raquo;</a></p>
						</div>
					</div>
                </div>
                <div class="col-md-4">
					<div class="panel panel-default">
						<div class="panel-heading">
							<h4>SQL Injection</h4>
						</div>
						<div class="panel-body">
							<p>A SQL injection attack consists of insertion or "injection" of a SQL query via the input data from the client to the application.</p>
						</div>
						<div class="panel-footer">
							<p><a class="btn btn-default" href="/sql-injection" role="button">View demonstration &raquo;</a></p>
						</div>
					</div>
                </div>
                <div class="col-md-4">
					<div class="panel panel-default">
						<div class="panel-heading">
							<h4>Full Path Disclosure</h4>
						</div>
						<div class="panel-body">
							<p>Full Path Disclosure (FPD) vulnerabilities enable the attacker to see the path to the webroot/file.</p>
						</div>
						<div class="panel-footer">
							<p><a class="btn btn-default" href="/full-path-disclosure" role="button">View demonstration &raquo;</a></p>
						</div>
					</div>
                </div>
            </div>
            <div class="col-md-12">
                <div class="col-md-4">
					<div class="panel panel-default">
						<div class="panel-heading">
							<h4>Arbitrary Code Execution</h4>
						</div>
						<div class="panel-body">
							<p>Arbitrary Code Execution is used to describe an attacker's ability to execute any commands of the attacker's choice on a target machine or in a target process.</p>
						</div>
						<div class="panel-footer">
							<p><a class="btn btn-default" href="/arbitrary-code-execution" role="button">View demonstration &raquo;</a></p>
						</div>
					</div>
                </div>
                <div class="col-md-4">
					<div class="panel panel-default">
						<div class="panel-heading">
							<h4>Denial Of Service Attack (DoS)</h4>
						</div>
						<div class="panel-body">
							<p>In computing, a denial-of-service (DoS) or distributed denial-of-service (DDoS) attack is an attempt to make a machine or network resource unavailable to its intended users.</p>
						</div>
						<div class="panel-footer">
							<p><a class="btn btn-default" href="/denial-of-service" role="button">View demonstration &raquo;</a></p>
						</div>
					</div>
                </div>
                <div class="col-md-4">
					<div class="panel panel-default">
						<div class="panel-heading">
							<h4>Cross-site request forgery</h4>
						</div>
						<div class="panel-body">
							<p>Cross-site request forgery, also known as a one-click attack or session riding and abbreviated as CSRF (sometimes pronounced sea-surf) or XSRF, is a type of malicious exploit of a website whereby unauthorized commands are transmitted from a user that the website trusts.</p>
						</div>
						<div class="panel-footer">
							<p><a class="btn btn-default" href="/cross-site-request-forgery" role="button">View demonstration &raquo;</a></p>
						</div>
					</div>
                </div>
            </div>
            <div class="col-md-12">
                <div class="col-md-4">
					<div class="panel panel-default">
						<div class="panel-heading">
							<h4>Data Breach</h4>
						</div>
						<div class="panel-body">
							<p>A data breach is the intentional or unintentional release of secure information to an untrusted environment. Other terms for this phenomenon include unintentional information disclosure, data leak and also data spill.</p>
						</div>
						<div class="panel-footer">
							<p><a class="btn btn-default" href="/data-breach" role="button">View demonstration &raquo;</a></p>
						</div>
					</div>
                </div>
                <div class="col-md-4">
					<div class="panel panel-default">
						<div class="panel-heading">
							<h4>Malware Distribution</h4>
						</div>
						<div class="panel-body">
							<p>A Trojan Horse is a program that uses malicious code masqueraded as a trusted application. The malicious code can be injected on benign applications, masqueraded in e-mail links, or sometimes hidden in JavaScript pages to make furtive attacks against vulnerable internet Browsers.</p>
						</div>
						<div class="panel-footer">
							<p><a class="btn btn-default" href="/malware-distribution" role="button">View demonstration &raquo;</a></p>
						</div>
					</div>
                </div>
                <div class="col-md-4">
					<div class="panel panel-default">
						<div class="panel-heading">
							<h4>Local file inclusion</h4>
						</div>
						<div class="panel-body">
							<p>Local File Inclusion (also known as LFI) is the process of including files, that are already locally present on the server, through the exploiting of vulnerable inclusion procedures implemented in the application.</p>
						</div>
						<div class="panel-footer">
							<p><a class="btn btn-default" href="/local-file-inclusion" role="button">View demonstration &raquo;</a></p>
						</div>
					</div>
                </div>
            </div>
            <div class="col-md-12">
                <div class="col-md-4">
					<div class="panel panel-default">
						<div class="panel-heading">
							<h4>Remote file inclusion</h4>
						</div>
						<div class="panel-body">
							<p>Remote File Include (RFI) is an attack technique used to exploit "dynamic file include" mechanisms in web applications. When web applications take user input (URL, parameter value, etc.) and pass them into file include commands, the web application might be tricked into including remote files with malicious code.</p>
						</div>
						<div class="panel-footer">
							<p><a class="btn btn-default" href="/remote-file-inclusion" role="button">View demonstration &raquo;</a></p>
						</div>
					</div>
                </div>
                <div class="col-md-4">
					<div class="panel panel-default">
						<div class="panel-heading">
							<h4>Buffer overflow</h4>
						</div>
						<div class="panel-body">
							<p>In computer security and programming, a buffer overflow, or buffer overrun, is an anomaly where a program, while writing data to a buffer, overruns the buffer's boundary and overwrites adjacent memory. This is a special case of violation of memory safety.</p>
						</div>
						<div class="panel-footer">
							<p><a class="btn btn-default" href="/buffer-overflow" role="button">View demonstration &raquo;</a></p>
						</div>
					</div>
                </div>
                <div class="col-md-4">
					<div class="panel panel-default">
						<div class="panel-heading">
							<h4>Memory corruption</h4>
						</div>
						<div class="panel-body">
							<p>Referencing memory after it has been freed can cause a program to crash. The use of heap allocated memory after it has been freed or deleted leads to undefined system behavior</p>
						</div>
						<div class="panel-footer">
							<p><a class="btn btn-default" href="/memory-corruption" role="button">View demonstration &raquo;</a></p>
						</div>
					</div>
                </div>
            </div>
        </div>
<?php
	echo getFooter();
?>