I’M Tired, LOL.
This weekend I participated in the Offensive Security “How Strong is your Fu?” Hacking tournament. It was a incredible challenge with very precise exploits. Overall I loved the challenge I had a lot of fun, and got very frustrated at some points LOL.
Thank you OffSec for the tournament it was great I can’t wait for more to come.
I was bored and started to browse some of google labs new features and services. Before I could get far a title caught my eye, it was the first listing on the google labs page. The title was ” Web Application Exploits and Defenses”, what is this? This interesting google code university project reminds me of OWASP’s WebGoat project. The difference is the web application is hosted remotely not locally. After further investigation I found out some very interesting features. The application called “Jarlsberg /yärlz’·bərg/” is the vulnerable web application, and once a user sets up their application, the application runs in a separate sandboxed instance specifically for the user. This means there is no contending with others you can work at you own pace and overall you have your very own remote instance of a vulnerable web application, how fun =)
Additionally, the project has labs for a user to go through and learn various web application penetration testing techniques. It also includes labs for blackbox testing, as well as, whitebox testng which according to the projects documentation reviews a lot of the source code of the vulnerable web application to look for vulnerabilities. Within the labs the project has for users they take a user through the exploit as well as document how to fix this issue in the vulnerable web application.
Overall, I believe this is a very nice project from what I have read so far. I can’t wait to get my hands dirty and dig in to have some fun with this vulnerable application. Let’s have some fun, learn some new stuff, and break some things while we are at it =)
Link to the Web Application Exploits and Defenses Project Listed Below:
This is a tutorial on how to install Skipfish 1.33b in BT4 final.
Update Note: Skipfish 1.34b released I just verified this tutorial will work with the new 1.34b version as well.
Note: all commands that should be issued are in code boxes all other text is comments
The first thing we need to do is install a dependency that does not come default with BT4. The dependency is libidn11-dev, BT4 comes with libidn11 by default just not the development lib.
Install libidn11-dev
Code:apt-get install libidn11-devInstallation
Download skipfish from the url below:
skipfish – Project Hosting on Google Codeonce downloaded we extract and move to any dir you would like, I moved it to /pentest/web/skipfish so I will be organized.
Code:mv skipfish-1.33b.tgz /tmp cd /tmp tar xvf skipfish-1.33b.tgz mv skipfish /pentest/web/ cd /pentest/web/skipfishBefore we issue our make command we need to modify the Makefile, look for the LDFLAGS we need to add our correct directory. Before modification it looks like this:
Before:Code:LDFLAGS += -L/usr/local/lib/ -L/opt/local/libAfter:
Code:LDFLAGS += -L/usr/lib/ -L/opt/local/libAfter you make the appropriate changes save the Makefile, you can now run make and compile skipfish.
Note: if you do not modify the Makefile as described above skipfish will compile but when you run the application it will error out and not scan since the Makefile was pointing to the wrong directory.
Make the executable:
Code:makeand we are done, all you need to do now is choose the appropriate dictionary you want to use. for more information See dictionaries/README-FIRST to pick a dictionary for the tool.
I chose the minimal.wl dictionary now we cp and move it
Code:cp minimal.wl skipfish.wl cp skipfish.wl .. cd ..you can optionally make a output directory as well I like to, for the sake of organization:
Code:mkdir output/ mkdir output/firstRUN IT:
Code:./skipfish -o output/frist/ http://192.168.6.9when the scan completes the output report will be output/first/index.html
Hope you enjoy it.
bostonlink – OSCP