CCSA#5

Web Application Basics

Disclaimer:

Usage of these information/Data/Tools/Techniques for attacking targets without prior mutual consent is illegal. It's the end user's responsibility to obey all applicable local, state and federal laws. The Computer Joker/Instructor/Owner assume no liability and are not responsible for any misuse or damage caused by this program. Only use for educational purpose. The Computer Joker/Instructor do not support/promote hacking. For more details, head to our t&c page.

what is a website?

A website is a collection of web pages that are connected via a single domain name and hosted on at least one server.

A website can be accessed via network.

All publicly accessible websites collectively constitute the World Wide Web

Users can access websites on a range of devices, including desktops, laptops, tablets, and smartphones. The software application used on these devices is called a web browser.

A web application (or web app) is application software that runs on a web server, unlike computer-based software programs that are stored locally on the Operating System (OS) of the device.

Web applications are accessed by the user through a web browser with an active internet connection.

These applications are programmed using a client–server modeled structure—the user ("client") is provided services through an off-site server that is hosted by a third-party.

Examples of commonly-used web applications include: web-mail, online retail sales, online banking, and online auctions.

what is a web application?

web technologies

Client side: Which runs on client side (in browser)

HTML, CSS, JavaScript, DHTML, Web APIs, AJAX & etc

Server side: Which runs on server side (on server)

Server APIs, PHP, XML, JSP, .net & etc

web framework

A web framework (WF) or web application framework (WAF) is a software framework that is designed to support the development of web applications including web services, web resources, and web APIs.

Web frameworks provide a standard way to build and deploy web applications on the World Wide Web. Web frameworks aim to automate the overhead associated with common activities performed in web development.

For example, many web frameworks provide libraries for database access, templating frameworks, and session management, and they often promote code reuse.

Although they often target development of dynamic web sites, they are also applicable to static websites.

web framework - MVC ( Model, view & controller)

Many frameworks follow the MVC architectural pattern to separate the data model with business rules from the user interface. This is generally considered a good practice as it modularizes code, promotes code reuse, and allows multiple interfaces to be applied. In web applications, this permits different views to be presented, such as web pages for humans, and web service interfaces for remote applications.

In three-tier organization, applications are structured around three physical tiers: client, application, and database.

The database is normally an RDBMS.

The application contains the business logic, running on a server and communicates with the client using HTTP.

The term should not be confused with MVC, where, unlike in three-tier architecture, it is considered a good practice to keep business logic away from the controller, the "middle layer".

three tier

three tier - components

Client

The client on web applications is a web browser that runs HTML generated by the application layer.

Application/ hosted on Server

A web server is server software, or hardware dedicated to running this software, that can satisfy client requests on the World Wide Web. A web server can, in general, contain one or more websites. A web server processes incoming network requests over HTTP and several other related protocols.

Database

A database is an organized collection of data, generally stored and accessed electronically from a computer system. The database management system (DBMS) is the software that interacts with end users, applications, and the database itself to capture and analyze the data. The DBMS software additionally encompasses the core facilities provided to administer the database.

Eg. : MySQL, MSSQL, Oracle, MS-Access

Three tier architecture

In three-tier organization, applications are structured around three physical tiers: client, application, and database.

A simple login through web

How login functionality works with three tier model.

That's all for this module!

Click below to get to the Next Module - Web Application Hacking & Security


“Life is not fair, get used to it”

-BILL GATES <Microsoft founder>

Disclaimer:

Usage of these information/Data/Tools/Techniques for attacking targets without prior mutual consent is illegal. It's the end user's responsibility to obey all applicable local, state and federal laws. The Computer Joker/Instructor/Owner assume no liability and are not responsible for any misuse or damage caused by this program. Only use for educational purpose. The Computer Joker/owner/Instructor do not support/promote hacking. For more details, head to our t&c page.

want a training?

Please contact us by filling the form on the right side for:

--> Live One to One Training

--> Course materials (pdf, tools & videos)

--> For any queries/feedback & suggestions.

Social

Contact

hi@thecomputerjoker.com

© copyrighted 2021. All Rights Reserved.