I was recently thinking of ways to find out what vulnerabilities might exist on a website I recently created, but it's a free website and I don't have any money (because I spend it all on tech stuff!) Then it hit me that since I've been watching Hak5 for years I thought I would ask if there is anyone out there interested in doing some ethical hacking to see if they can identify any vulnerabilities.
It is a website based on ASP.Net 4 Framework using ASP.Net membership services. I'm not really looking for DoS attacks, because it's just a single server and I know it wouldn't take much to take it down. I'm more interested in knowing what methods a person could come up with to:
1) access another user's account/profile
2) modify system/site data without logging in
3) modify system/site data while logged in, but things that *shouldn't* be able to be changed
I am also asking that any volunteers not actually destroy the server/site but simply reveal any discovered flaws so that I can fix them and protect users.
If anyone is interested, please let me know via PM/email.