CMS Joomla


Published on

Penetration Testing,Security,Network Security,Hacker (term),Hacker (computer Security),Computer Security (Industry),Learn Hacking Security,ecore,LHS,Pen Testing,Linux,Website Security,System Pen testing,BackTrack,Hacking, CMS,JOOMLA,Tools,Computer Hacking,kali linux,kali,Windows,web browser attack,Phishing,R3,SET,Social Engineering Toolkit,Tutorial,Facebook Hack,Apple HAck,Windows Hack,Browser Attack,Client side exploit

1 Like
  • Be the first to comment

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide

CMS Joomla

  1. 1. CMS(Content ManagementSystem)Meenu DograSoftware
  2. 2. About Myself Meenu Dogra Software Engineer Specializes in Secure Coding/Application Development Knowledge of PHP, JAVA, J2EE, Oracle, Javascript, Mysql, SQL Joomla, Wordpress, SEO, Facebook Applications, Android Applications, Facebook Developer and many more Oracle Certified Associate (OCA) Speaker – Webinars Email : Meenu .
  3. 3. CMS: The open Source Platform • Allows publishing, editing and modifying content • designed to simplify the complex task of writing numerous versions of code
  4. 4.  All three are written in the PHP programming language Most  Depend on the MySQL database  Popular CMS Drupal Joomla Wordpress• open-source • open-source • open-source• Required Technical • Required Technical • Not Required Technical Knowledge Knowledge Knowledge
  5. 5. Lets watch a video to start knowing Joomla
  6. 6. MVC Pattern Model-View-Controller (herein referred to as MVC) is a software designpattern that can be used to organize code in such a way that the business logic and data presentation are separate.Model : the model will contain methods to add, remove and updateinformation about the greetings in the database.View : used to render the data from the model in a manner that issuitable for interactionController: The controller is responsible for responding to user actions.a user action is (generally) a page request. The controller does notdisplay the data in the model, it only triggers methods in the modelwhich modify the data, and then pass the model into the view whichdisplays the data.
  7. 7. Install XAMPInstall Joomla
  8. 8. User ManagerJoomla has a registration system that allows users to configurepersonal options. There are nine user groups with various types ofpermissions on what users are allowed to access, edit, publish andadministrate.
  9. 9. Article ManagerOne of the most important parts of a website is the content.1. To add a section to your website, go to http://localhost/joomla/administrator and log in with the username “admin” and the password you specified during the installation.2. Click on “Article Manager” on the Joomla! toolbar.3. Insert a title and description for the article and then press “Save” on the toolbar.
  10. 10. Menu ManagerTo add menu’s to your website, go to1. Click on “Menu Manager” on the Joomla! toolbar.2. Click “Add Main Menu” in the toolbar.3. Insert the name and article to be added and then press “Save” on the toolbar.
  11. 11. ExtentionHere you can.1. Add a module.2. Add templates3. Add plugins etc..
  12. 12. Language ManagerThere is international support for many world languages and UTF-8encoding. If you need your Web site in one language and theadministrator panel in another, multiple languages are possible.
  13. 13. Template ManagerTemplates in Joomla are a powerful way to make your site lookexactly the way you want and either use a single template for theentire site or a separate template for each site section.
  14. 14. • Corporate Web sites or portals • Inventory Control Systems • Data Reporting ToolsWhat Joomla! can do? • Online magazines, newspapers • E-commerce and online reservations • Small business Web sites
  15. 15. Who uses Joomla?• MTV Networks Quizilla (Social networking) -• IHOP (Restaurant chain) -• Harvard University (Educational) -• Citibank (Financial institution intranet) - Not publicly accessible• The Green Maven (Eco-resources) -• Outdoor Photographer (Magazine) -• (Cultural) -• Senso Interiors (Furniture design) -
  16. 16. Joomla or websites Security
  17. 17. Few Vulnerabilities SQL Injection Cross Site Scripting Directory Listing Email Hijacking Session Hijacking And Many more….
  18. 18.  Practical Demo Of SQL Injection and website hacking
  19. 19. Security CheckList The Ftp username and password must be different from the web server username and password. Never use username “Admin”. Always use well formed passwords.Visit Password must be unique and strong. Encrypt the Password and other credential Information in database. Passwords must be update in every 15 days. Update Joomla. Always add new user for new site database. Change directory permissions. Change jos_users to something random.
  20. 20. Site Recovery1. Change All passwords.2. Check raw logs.3. List Recently modified files.4. If identified that how you are hacked then coordinate with your host.5. Delete entire public html folder.6. Delete related database record.7. Reinstall Everything.8. Reset Password.9. Review Security Practices.10.Review Backup Processes.
  21. 21. Resources Thank You