Join us on a literary world trip!
Add this book to bookshelf
Grey
Write a new comment Default profile 50px
Grey
Subscribe to read the full book or read the first pages for free!
I want to read the book!
All characters reduced
Penetration Testing of Computer Networks Using BurpSuite and Various Penetration Testing Tools - cover

Penetration Testing of Computer Networks Using BurpSuite and Various Penetration Testing Tools

Dr. Hidaia Mahmood Alassouli

Publisher: Dr. Hidaia Mahmood Alassouli

  • 0
  • 0
  • 0

Summary

Burp Suite is an integrated platform/graphical tool for performing security testing of web applications. Burp suite is a java application that can be used to secure or crack web applications. The suite consists of different tools, like a proxy server, a web spider an intruder and a so-called repeater, with which requests can be automated. You can use Burp's automated and manual tools to obtain detailed information about your target applications.

Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal  environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment.

In this report I am using a combination of Burp tools to detect and exploit vulnerabilities in Damn Vulnerable Web App (DVWA) with low security. By default, Burp Scanner scans all requests and responses that pass through the proxy. Burp lists any issues that it identifies under Issue activity on the Dashboard. You can also use Burp Scanner to actively audit for vulnerabilities. Scanner sends additional requests and analyzes the application's traffic and behavior to identify issues.

Various examples are outlined in this report for different types of vulnerabilities such as: SQL injection, Cross Site Request Forgery (CSRF), Cross-site scripting, File upload, Local and Remote File Inclusion. I tested various types of penetration testing tools in order to exploit different types of vulnerabilities. The report consists from the following parts:
1. Installing and Configuring BurpSuite
2. BurpSuite Intruder.
3. Installing XMAPP and DVWA App in Windows System.
4.  Installing PHP, MySQL, Apache2, Python and DVWA App in Kali Linux.
5. Scanning Kali-Linux and Windows Using  . 
6. Understanding Netcat, Reverse Shells and Bind Shells.
7. Adding Burps Certificate to Browser.
8. Setting up Target Scope in BurpSuite.
9. Scanning Using BurpSuite.
10. Scan results for SQL Injection Vulnerability with BurpSuite and Using SQLMAP to Exploit the SQL injection.
11. Scan Results for Operating System Command Injection Vulnerability with BurpSuite and Using Commix to Exploit the OS Command Injection.
12. Scan Results for Cross Side Scripting (XSS) Vulnerability with BurpSuite, Using Xserve to exploit XSS Injection and Stealing Web Login Session Cookies through the XSS Injection.
13. Exploiting File Upload Vulnerability.
14: Exploiting Cross Site Request Forgery (CSRF) Vulnerability.
15. Exploiting File Inclusion Vulnerability.
16. References.
Available since: 02/23/2023.
Print length: 160 pages.

Other books that might interest you

  • The Case for Climate Capitalism - Economic Solutions for a Planet in Crisis - cover

    The Case for Climate Capitalism...

    Tom Rand

    • 0
    • 0
    • 0 
    A warming climate and a general distrust of Wall Street has opened a new cultural divide: anti-market critics from Naomi Klein to the Pope target capitalism itself as a root cause of climate change, while neoconservatives who diminish the climate threat are in favor of market fundamentalism. Tom Rand argues that both sides in this emerging cultural war are ill-equipped to provide solutions to the climate crisis, and each is remarkably naïve in their view of capitalism. On one hand, we cannot possibly transition off fossil fuels without the financial might and entrepreneurial talent market forces alone can unlock. On the other, without radical changes to the way markets operate, capitalism will take us right off the climate cliff. Rejecting the old Left/Right ideologies, Rand develops a more pragmatic view capable of delivering practical solutions to this critical problem. A renewed capitalism harnessed to the task is the only way we might replace fossil fuels fast enough to mitigate severe climate risk. If we leave our dogma at the door, Rand argues, we might just build an economy that survives the century.
    Show book
  • Control irritable bowel syndrome with hypnosis - cover

    Control irritable bowel syndrome...

    Dr. Nidal Moughrabi, Bobby Cole,...

    • 0
    • 0
    • 0 
    Who is this hypnosis for:If you have been diagnosed with the Irritable Bowel Syndrome and:- medication has not worked for you or- you want to avoid medication and find a more natural way to deal with the IBS symptoms... this hypnosis will be useful.It will help you soothe your symptoms (stomach cramps, bloating, diarrhoea, constipation) and, if used regularly, it will support your healing.How it works:As you probably know, there is no physical cause for the IBS symptoms, our intestines simply stop functioning harmoniously. Medication is hardly helpful, as it will usually address the effects of this disturbance but not its cause.Because of this, the diagnosis is never pleasant. Living with the ailment can be quite a challenge (disturbing our work, relationships, free time). Yet, here is a piece of good news:While all our body parts are responsive to hypnosis, our digestive tract is much more so. It has been discovered that there is a deep connection between our brain and our digestive tract. The latter even contains about 100 million nerve cells and some call it our "abdominal brain".This means that it is entirely possible for our intestines, when given the right suggestions under trance, to calm down. With its intelligence and sensitivity, our digestive tract picks up the positive message and slowly shifts back into normal functioning, while the unpleasant symptoms ameliorate or disappear completely.This 29 min hypnosis is designed for this.My recommendation: try if for 3 days (once a day, at a time convenient for you). If you feel it is working for you, continue with it on a daily basis – this way, you will consolidate the results and support your healing.Disclaimer:The products sold here do not replace medical or psychological therapy. Please take your time when listening to the audio downloads and stop doing anything else that might distract you, e.g., don't use them while working or driving a car.ENJOY!Yours Dr. Nidal MoughrabiLife-Coach, MDHypnotherapy, NLP and Meditation Training
    Show book
  • The Report on Unidentified Flying Objects - cover

    The Report on Unidentified...

    Edward J. Ruppelt

    • 0
    • 0
    • 0 
    'Straight from the horse's mouth', as they say. Edward Ruppelt was the first head of the U.S. Air Force's Project Blue Book, the official project initiated to investigate UFO reports beginning in 1952. This report from 1956 takes us inside these initial investigations, separates fact from fiction, and gives insight into who, when, where, and how sightings were reported and researched in open-minded fashion (for which Ruppelt was renowned), rather than in the typical hushed and secretive (and censored) manner most often associated with government and military reports which are released to the public.Dozens of specific sightings are recounted, although hundreds more had come pouring into the agency during the period covered (and hundreds, if not thousands more that were never officially reported). Here we go inside the workings of Project Blue Book, which had evolved from 2 earlier Air Force projects, and we are witness to interviews, press conferences, Pentagon briefings, and many reports from civilian and military pilots, Air Traffic Controllers, office workers, farmers, and the man on the street who reported their accounts with UFOs. And not all sightings that were reported were restricted to the U.S.Although Project Blue Book would continue until 1969, here we witness an in-depth account from it's inception and it's earliest stages, the political obstacles, the houndings from the press, the overall confusion encountered during and following many of the sightings, and the near hysteria caused during the heyday of UFO sightings, and all from the man who headed up the project in it's earliest years. The second edition of Ruppelt's work was supplemented with 3 additional chapters which were added in 1960, and we are fortunate that they are included here. (Summary by Roger Melin)
    Show book
  • Inside the Brain: Surgical Stories and Breakthroughs - Dive into surgical stories: Experience "Inside the Brain" with captivating audio lessons for breakthrough insights! - cover

    Inside the Brain: Surgical...

    Elliot Thorne

    • 0
    • 0
    • 0 
    'Inside the Brain: Surgical Stories and Breakthroughs': 
Are you eager to advance in your career and enhance your understanding by exploring groundbreaking stories within the realms of neurosurgery? 
Looking for an all-encompassing guide that delivers crucial insights into pioneering brain surgeries and medical breakthroughs? 
Your search concludes here! 
This audiobook is your indispensable companion for expanding your knowledge, honing your expertise, and immersing yourself in impactful narratives. With this, you’re on the path to success. 
Updated for the latest insights in the field of brain surgery. 
Key features of this enriched audiobook: 
- Deep insights into revolutionary surgical stories and breakthroughs  
- Detailed explanations of brain procedures and discoveries  
- Effective strategies for understanding and appreciating advancements  
Our audiobook sets itself apart with comprehensive coverage, crucial for grasping the essence of neurological excellence. Concepts aren't just skimmed over; they are thoroughly explored with precision. 
Please note that this audiobook is not officially affiliated with any medical organization and serves purely as an independent resource for your enrichment. 
Crafted with a clear structure and easily understandable language, 'Inside the Brain: Surgical Stories and Breakthroughs' ensures seamless transitions between topics. Say goodbye to complex medical jargon and welcome clear, precise, and scientifically accurate content. 
So, why wait? Click the BUY NOW button, secure your audiobook, and begin your journey into the awe-inspiring world of brain surgery and breakthroughs!
    Show book
  • World Wild Vet - Encounters in the Animal Kingdom - cover

    World Wild Vet - Encounters in...

    Evan Antin

    • 0
    • 0
    • 0 
    This program is read by Dr. Evan Antin.A wild look at our natural world for fans of Steve Irwin, James Herriot, and Bear GryllsMillions follow Dr. Evan Antin and his wildlife adventures through social media and on his popular Animal Planet television show Evan Goes Wild. Now in his first audiobook, World Wild Vet, Evan takes us to the deep blue seas, swimming with giant whale sharks with “puppy dog eyes," to jungles filled with venomous snakes (who are more afraid of you than you are of them), to a race across the savannah and against the clock to save rhinos from the clutches of poachers—all in the name of adventure and a deep love for the wild around us.Equal parts memoir, travelogue, and conservationist wake up call, World Wild Vet is an unforgettable exploration of the world we all call home and a love letter to the creatures we share it with.  A Macmillan Audio production from Henry Holt and Company
    Show book
  • The Year in Tech 2023 - The Insights You Need from Harvard Business Review - cover

    The Year in Tech 2023 - The...

    Harvard Business Review

    • 0
    • 0
    • 0 
    A year of HBR's essential thinking on tech—all in one place.Easy-to-use AI tools, contactless commerce, crypto for business, the mature metaverse—new technologies like these are reshaping organizations at the hybrid office, on factory floors, and in the C-suite. What should you and your company be doing now to take advantage of the new opportunities these technologies are creating—and avoid falling victim to disruption? The Year in Tech 2023: The Insights You Need from Harvard Business Review will help you understand what the latest and most important tech innovations mean for your organization and how you can use them to compete and win in today's turbulent business environment.Business is changing. Will you adapt or be left behind?Get up to speed and deepen your understanding of the topics that are shaping your company's future with the Insights You Need from Harvard Business Review series. Featuring HBR's smartest thinking on fast-moving issues—blockchain, cybersecurity, AI, and more—each book provides the foundational introduction and practical case studies your organization needs to compete today and collects the best research, interviews, and analysis to get it ready for tomorrow.
    Show book