Join us on a literary world trip!
Add this book to bookshelf
Grey
Write a new comment Default profile 50px
Grey
Subscribe to read the full book or read the first pages for free!
I want to read the book!
All characters reduced
Penetration Testing of Computer Networks Using BurpSuite and Various Penetration Testing Tools - cover

Penetration Testing of Computer Networks Using BurpSuite and Various Penetration Testing Tools

Dr. Hedaya Alasooly

Publisher: BookRix

  • 0
  • 0
  • 0

Summary

Burp Suite is an integrated platform/graphical tool for performing security testing of web applications. Burp suite is a java application that can be used to secure or crack web applications. The suite consists of different tools, like a proxy server, a web spider an intruder and a so-called repeater, with which requests can be automated. You can use Burp's automated and manual tools to obtain detailed information about your target applications.
Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal  environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment.
In this report I am using a combination of Burp tools to detect and exploit vulnerabilities in Damn Vulnerable Web App (DVWA) with low security. By default, Burp Scanner scans all requests and responses that pass through the proxy. Burp lists any issues that it identifies under Issue activity on the Dashboard. You can also use Burp Scanner to actively audit for vulnerabilities. Scanner sends additional requests and analyzes the application's traffic and behavior to identify issues.
Various examples are outlined in this report for different types of vulnerabilities such as: SQL injection, Cross Site Request Forgery (CSRF), Cross-site scripting, File upload, Local and Remote File Inclusion. I tested various types of penetration testing tools in order to exploit different types of vulnerabilities. The report consists from the following parts:
1. Installing and Configuring BurpSuite
2. BurpSuite Intruder.
3. Installing XMAPP and DVWA App in Windows System.
4.  Installing PHP, MySQL, Apache2, Python and DVWA App in Kali Linux.
5. Scanning Kali-Linux and Windows Using  .  
6. Understanding Netcat, Reverse Shells and Bind Shells.
7. Adding Burps Certificate to Browser.
8. Setting up Target Scope in BurpSuite.
9. Scanning Using BurpSuite.
10. Scan results for SQL Injection Vulnerability with BurpSuite and Using SQLMAP to Exploit the SQL injection.
11. Scan Results for Operating System Command Injection Vulnerability with BurpSuite and Using Commix to Exploit the OS Command Injection.
12. Scan Results for Cross Side Scripting (XSS) Vulnerability with BurpSuite, Using Xserve to exploit XSS Injection and Stealing Web Login Session Cookies through the XSS Injection.
13. Exploiting File Upload Vulnerability.
14: Exploiting Cross Site Request Forgery (CSRF) Vulnerability.
15. Exploiting File Inclusion Vulnerability.
16. References.
Available since: 02/24/2023.
Print length: 66 pages.

Other books that might interest you

  • How to be a good engineer - Ten commnadments and 100 top tips - cover

    How to be a good engineer - Ten...

    Santiago Barcon

    • 0
    • 0
    • 0 
    Written by Santiago Barcón, who has dedicated his professional life to becoming an ever-improving professional and training others, always sharing his experiences and knowledge with great generosity.

This enjoyable and useful work is destined to become a reference book for engineers and future professionals in this field. It can be applied to all professions, regardless of the discipline in which the individual works; they will dignify them and seek to create a better world where respect for others and for oneself prevails.

The 100 pieces of advice offered in the book can be grouped into the following topics: skills and values, personal and professional development, and professional practice. In addition to explaining them, it presents real-life examples that illustrate the importance of what is stated.

All of these topics highlight the importance of not only having technical knowledge, years of experience, and constant updating, but also developing personal and professional skills on a daily basis. Being open to learning from others, recognizing the work of others, and correcting mistakes, among others, are essential.

The author encourages readers to consistently practice what is taught in the book so that it becomes deeply rooted and becomes a natural habit.
    Show book
  • Dealing with Early-Onset Alzheimer's: Love Laughter & Tears - cover

    Dealing with Early-Onset...

    Sonia Discher

    • 0
    • 0
    • 0 
    Dealing with Early Onset Alzheimer's: Love, Laughter & Tears is Sonia Discher's heartbreaking but empowering story of caring for her husband, Steve. The story follows Steve's diagnosis with Early Onset Alzheimer's at age 50 through treatment, care and his passing. Sonia provides a look behind the curtain of this terrible sickness to reveal a treasure trove of tips and tricks she did to understand the disease, advocate for her husband, care for her family and preserve her sanity throughout a confusing and sad time. Functional, day-to-day tips about early warning signs, medication levels, and how to address doctors, nurses and other professional caregivers (among many other areas such as long-term care and hospital stays) are some of the valuable examples included in this personal story.
    Show book
  • Do You Believe in Fairies? - Compositions of Truth & Nature in Art & Poetry - cover

    Do You Believe in Fairies? -...

    Ashley Anne Strobridge

    • 0
    • 0
    • 0 
    This is an audio journey through a collection of original Nature photography paired with original poetry & prose. Within you'll find lyrical audio descriptions of photos spanning the landscapes of my home state of Vermont, as well as a curated selection of photos from Virginia. This art is paired with whimsical & impactful poetry in themes of ecology, fantasy, social justice (BIPOC, LBGTQIA+ & Women's Rights, aging & disability), literature, conservation, history, family trauma, healing, & never forgetting pure Fascination with the Wonders of the Universe.This work is intended to create access to the wonders & benefits of Nature to those who may have mobility issues, disabilities (including visual impairment), or who otherwise lack access to the healing power of Nature due to financial hardship; racial, social, or fat-biased exclusion; or other circumstances.Art, Science, Magic, Nature, Truth, Justice, Love, & Creativity: through Astrobridge Artistry, I aim to Communicate the Magic & Wonder of Nature, hoping to make the beauty & healing powers of the natural world accessible & inviting to all. As someone with multiple disabilities & limited mobility myself, I pride myself on taking photos of, & being inspired by, beautiful & whimsical scenes in natural places that are easily accessible. Whether I'm on a dirt road 2 steps from my car door, on an accessible nature trail, or even right on my own balcony in Montpelier, VT in my Magic Garden in the Sky, illustrating that the beauty of Nature can be more accessible than you think, & that you don't need to have the ability to climb a rocky mountain trail to witness the majesty of Nature, is one of my main missions. It is important to me to share my photos & writing with a world with ever diminishing access to the truth & natural surroundings.2 photos are credited to my Mother, Diana Whittington (the Rainbow's Daughter & There & Back Again), & another is in Public Domain; the remainder of the photos were taken by me.
    Show book
  • Putting Social Anxiety in Your Rearview Mirror - Learn How to Eliminate Anxiety and Communicate Your Needs without Fear or Trepidation - cover

    Putting Social Anxiety in Your...

    Nancy K. Rarick

    • 0
    • 0
    • 0 
    Do you struggle to have important or tough conversations with people? 
Why is it so difficult to do the simplest things, like communicating how you feel to your spouse or asking for a raise when you know you deserve one? Each time you need to have a serious conversation with your spouse or friends, it feels like a pit has opened in your stomach, as if you are burdened with the hardest task in the world. But life doesn’t have to feel that way. 
Marriage and family therapist Nancy Rarick has been helping people just like you feel confident (and even proud) to be able to tell people exactly what they think and feel — without the anxiety that normally comes along with it. 
In Putting Social Anxiety in Your Rearview Mirror, you will learn how to: 
Feel comfortable communicating how you feel to your spouse, friends, and family 
Determine why you feel anxiety in certain situations, and how to treat it 
Ask for what you want with as much effectivity as possible 
Experience more joy and get more meaning out of your life 
Become more assertive by raising your self-esteem 
With warmth, insight, and humor, Nancy will show you how to eliminate social anxiety once and for all and have the life you’ve always dreamed about. With courage and knowledge, life truly becomes much easier. Say goodbye to social anxiety today!
    Show book
  • Journeyman Electrician - Conquer Your Journeyman Electrician Exam! Gain access to dynamic audio lessons for unparalleled results - cover

    Journeyman Electrician - Conquer...

    Dexter Marlowe

    • 0
    • 0
    • 0 
    Audiobook Title: Journeyman Electrician 
⭐⭐ Simplified Guide & Explanations Included ⭐⭐ 
Are you aiming to advance in your career and fortify your knowledge by successfully becoming a Journeyman Electrician? 
Seeking a comprehensive guide that provides all the essential elements to pass your Journeyman Electrician Exam? 
Your search ends here! 
This guide is your definitive companion for deepening your understanding, applying your skills, and engaging in hands-on exercises. With this, you're geared for success. 
Updated for the latest Journeyman Electrician Exam Structure. 
Key features of this enriched guide: 
- Profound insights about the Journeyman Electrician Certification 
- Detailed explanations of electrical principles and safety guidelines 
- Effective strategies for exam preparation and problem-solving 
Our guide distinguishes itself through comprehensive coverage, essential for your exam victory. Concepts are not merely skimmed; they are delved into with precision. 
Please note that this guide is not affiliated with any official Journeyman Electrician entity and is purely an independent resource for your benefit. 
Designed with a clear structure and easy-to-understand language, our Journeyman Electrician Guide ensures smooth transitions between topics. Say goodbye to dense jargon and welcome clear, precise, and technically accurate content. 
So, why wait? Click the BUY NOW button, secure your guide, and commence your journey to becoming a successful Journeyman Electrician!
    Show book
  • Voices of Famous Inventors - cover

    Voices of Famous Inventors

    Thomas Edison, Thomas Watson,...

    • 0
    • 0
    • 0 
    Thomas Alva Edison (February 11, 1847 – October 18, 1931) was an American inventor and businessman. He developed many devices that greatly influenced life around the world, including the phonograph, motion picture camera, and a long-lasting, practical electric light bulb. Dubbed "The Wizard of Menlo Park", he was one of the first inventors to apply the principles of mass production and large-scale teamwork to the process of invention, and because of that, he is often credited with the creation of the first industrial research laboratory. The following, from 1908, is a commemoration at the New York Electrical Show of the 50th anniversary of the first Atlantic cable. Thomas Augustus Watson (January 18, 1854 – December 13, 1934) was as a bookkeeper and a carpenter before becoming an assistant to Alexander Graham Bell, aiding in the the invention of the telephone in 1876. He is best known because his name was one of the first words spoken over the telephone. "Mr. Watson, come here, I want to see you," were the first words Bell said using the new invention, according to Bell's laboratory notebook. Guglielmo Marconi (25 April 1874 – 20 July 1937) was an Italian inventor, known for his pioneering work on long distance radio transmission and radio telegraph system. Marconi shared the 1909 Nobel Prize in Physics with Karl Ferdinand Braun "in recognition of their contributions to the development of wireless telegraphy". As an entrepreneur, businessman, and founder of the The Wireless Telegraph & Signal Company in Britain in 1897, Marconi succeeded in making a commercial success of radio by innovating and building on the work of previous experimenters and physicists. The following is from a talk he gave in 1935 about how he received the first transatlantic message by wireless telegraphy.
    Show book