Penetration Testing of Computer Networks Using BurpSuite and Various Penetration Testing Tools

Dr. Hedaya Alasooly

Publisher: BookRix

Summary

Burp Suite is an integrated platform/graphical tool for performing security testing of web applications. Burp suite is a java application that can be used to secure or crack web applications. The suite consists of different tools, like a proxy server, a web spider an intruder and a so-called repeater, with which requests can be automated. You can use Burp's automated and manual tools to obtain detailed information about your target applications.Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment. In this report I am using a combination of Burp tools to detect and exploit vulnerabilities in Damn Vulnerable Web App (DVWA) with low security. By default, Burp Scanner scans all requests and responses that pass through the proxy. Burp lists any issues that it identifies under Issue activity on the Dashboard. You can also use Burp Scanner to actively audit for vulnerabilities. Scanner sends additional requests and analyzes the application's traffic and behavior to identify issues. Various examples are outlined in this report for different types of vulnerabilities such as: SQL injection, Cross Site Request Forgery (CSRF), Cross-site scripting, File upload, Local and Remote File Inclusion. I tested various types of penetration testing tools in order to exploit different types of vulnerabilities. The report consists from the following parts:1. Installing and Configuring BurpSuite2. BurpSuite Intruder.3. Installing XMAPP and DVWA App in Windows System.4. Installing PHP, MySQL, Apache2, Python and DVWA App in Kali Linux.5. Scanning Kali-Linux and Windows Using . 6. Understanding Netcat, Reverse Shells and Bind Shells.7. Adding Burps Certificate to Browser.8. Setting up Target Scope in BurpSuite.9. Scanning Using BurpSuite.10. Scan results for SQL Injection Vulnerability with BurpSuite and Using SQLMAP to Exploit the SQL injection.11. Scan Results for Operating System Command Injection Vulnerability with BurpSuite and Using Commix to Exploit the OS Command Injection.12. Scan Results for Cross Side Scripting (XSS) Vulnerability with BurpSuite, Using Xserve to exploit XSS Injection and Stealing Web Login Session Cookies through the XSS Injection.13. Exploiting File Upload Vulnerability.14: Exploiting Cross Site Request Forgery (CSRF) Vulnerability.15. Exploiting File Inclusion Vulnerability.16. References.

Available since: 12/21/2023.

Print length: 66 pages.

Science & Technology

Other books that might interest you

Blockchain Basics + NFTs for...

Satosy Nacamoto

Do you want to invest, but it seems so complicated? 
Have you never heard about Blockchain, NFTs and DeFi? 
If you want to invest then you are in the right place… 
Decentralized finance began with payment in cryptocurrencies but now covers many more activities such as borrowing, lending, saving, decentralized exchanges, and much more. NFT market brings you the unique opportunity to start making money from things once untradeable - digital music, art, and even your tweets on Twitter. Millionaires are being made because of this new opening in the market. 
In this collection you will know all the secrets to start making moeny in this new world! If you're interested in learning more and grabbing these opportunities with both hands, then this audiobook is for you. By the end of this guide, you will have all the tools necessary to start earning passive income. 
Scroll to the top of the page and click the “buy now” button to discover all the secrets!

Show book

Light's Opponent - The Battle...

Dirk Fallon

The universe is a vast and mysterious place, full of wonders and unknowns. At its core, there are two forces that define the very fabric of existence: light and darkness. These forces are not just opposites; they are intertwined in a constant struggle that shapes the cosmos. This battle between energy and darkness is a fundamental aspect of the universe, influencing everything from the birth of stars to the formation of galaxies.
Light, in its most basic form, is energy. It travels through space at incredible speeds, illuminating everything it touches. It powers the stars and sustains life on planets. Without light, the universe would be a cold and dark place, devoid of warmth and energy. But light’s role is not just to bring warmth and life; it also plays a crucial part in the balance of the universe. Light can be a force of creation, but it can also be a force of destruction. It can burn, blind, and erase everything in its path.
On the opposite side of the spectrum is darkness. Darkness is not just the absence of light; it is a powerful force in its own right. It is often associated with the unknown, with mystery, and with the things that lie beyond the reach of our understanding. Darkness is present in the vastness of space, in the black holes that devour everything in their proximity, and in the cold reaches of the universe where light cannot penetrate. While darkness may seem passive, it is far from it. It is a force that can shape the universe, exerting influence over the formation of galaxies, stars, and even life itself.

Show book

Space to Grow - Unlocking the...

Matthew Weinzierl, Brendan Rosseau

Space is a place of unparalleled possibility for humanity, and it's undergoing a revolution. A wave of companies led by gutsy entrepreneurs are unlocking opportunities that fire the imagination. No, it's not hotels on Mars or day trips to orbit (yet), but it's an awe-inspiring transformation driven by innovative technologies, creative approaches, hard work, and—for the first time—market forces. Above all, this revolution is uncovering the simple but unfamiliar truth that space is a place: a place where countries, markets, and each of us can play a vital role in realizing some of our biggest, boldest dreams. 
 
 
 
But we won't succeed through dreams alone. The space economy is just that—an economy—governed by the same laws of supply and demand that apply here on Earth. The authors, who teach a highly popular course on the topic at Harvard Business School, bring the revolution in space to life through players you know—like SpaceX and Blue Origin—and many you may not, like Astroscale, founded by a Japanese IT executive who quit his job to start a company to clean up space debris. They also bring to bear fundamental tools from economics to understand how the market in space is forming, how it's fast becoming a source of value for businesses across industries and for society as a whole, and how we can best ensure that its growth benefits us all.

Show book

Software Architecture for...

Steve Abrams

"Software Architecture for Developers: Designing Scalable and Maintainable Systems for the Real World" is an essential guide for software professionals seeking to elevate their understanding of architectural principles and design practices. In today's rapidly evolving technological landscape, the ability to create software systems that are not only scalable but also maintainable is paramount. 
This book goes beyond theoretical concepts, offering practical insights and real-world strategies for architecting robust and adaptable systems. From understanding the fundamentals of software architecture to mastering advanced techniques for designing distributed and microservices-based architectures, readers will gain the knowledge and skills needed to tackle complex architectural challenges with confidence. 
With a focus on scalability, maintainability, and performance, this book covers a wide range of topics, including modular design, architectural patterns, cloud-native architecture, and DevOps principles. Through in-depth case studies, code examples, and best practices, readers will learn how to navigate the trade-offs involved in architectural decisions and make informed choices that align with their project requirements. 
"Software Architecture for Developers" provides invaluable guidance on creating architectures that are flexible, adaptable, and future-proof.

Show book

Trailblazing Women...

Brandon Ashcroft

Trailblazing Women Mathematicians: The Hidden Story that Defied the Odds
⭐⭐ Simplified Audio Guide ⭐⭐
Are you eager to advance your understanding of trailblazing women mathematicians and uncover the hidden stories that defied the odds?
Looking for a comprehensive guide that illuminates the extraordinary lives and contributions of women mathematicians throughout history?
Your search ends here!
This audiobook serves as your definitive companion for broadening your knowledge, deepening your appreciation of their achievements, and engaging with detailed narratives. With this, you're set for an enriching journey.
Updated to include the latest research and insights.
Key features of this enriched guide:
- Profound insights about trailblazing women mathematicians
- Detailed explanations of their contributions and struggles
- Inspirational stories and strategies for overcoming obstacles
Our audiobook distinguishes itself through comprehensive coverage, essential for a thorough understanding of the subject. Concepts aren't merely skimmed; they are delved into with precision.
Designed with a clear structure and easy-to-understand language, our guide on trailblazing women mathematicians ensures smooth transitions between topics. Say goodbye to dense jargon and welcome clear, precise, and technically accurate content.
So, why wait? Click the BUY NOW button, secure your audiobook, and begin your journey to uncovering the hidden stories of trailblazing women mathematicians!

Show book

SIE Strategies for Clear Success...

Kellan Briarwood

SIE Strategies for Clear Success
⭐⭐ Simplified Techniques and Explanations Included ⭐⭐
Are you striving to advance your career in finance and solidify your knowledge to excel in the SIE Exam?
Are you in search of a comprehensive guide that encompasses all the essential elements to succeed in the SIE Exam?
Your quest ends here!
This guide is your ultimate companion for enhancing your understanding, honing your skills, and engaging in practical exercises. With this resource, you’re set for success.
Updated to reflect the latest SIE Exam structure.
Key features of this enhanced guide:
- In-depth insights about the SIE Exam Certification
- Thorough explanation of the SIE Exam essentials
- Effective strategies for exam preparation and problem-solving
Our guide stands out with its comprehensive coverage, which is vital for your exam triumph. Concepts are explored in detail, ensuring you grasp the material thoroughly.
Please be aware that this guide is not affiliated with any official SIE entity; it is an independent resource dedicated to your success.
Crafted with a logical structure and straightforward language, our SIE Exam Guide guarantees seamless transitions between topics. Say farewell to complex jargon and embrace clear, precise, and technically sound content.
So, why delay? Click the BUY NOW button, secure your guide, and embark on your journey to SIE Exam success!
Achieve your goal of mastering essential skills for success in finance careers with this invaluable audiobook!

Show book