Welcome, to website hacking & exploitation, the following links will provide tutorials on website hacking at different security levels using bWAPP
Getting Started
Before we begin website hacking, you need to set up a hacking lab.
bWAPP is used in these demonstrations but there are lots more.
Here are a list of vulnerable website virtual boxes.
- https://sourceforge.net/projects/bwapp/
- http://www.dvwa.co.uk/
- https://pentesterlab.com/
- https://www.owasp.org/index.php/OWASP_Vulnerable_Web_Applications_Directory_Project/Pages/VMs
Let the hacking begin!!
Website Hacking (NEW) Mutillidae
Broken Authentication: Username Enumeration
Broken Authentication: Brute forcing Passwords
BWAPP Hacking
Low Security
OS Command Injection
Unrestricted File-Upload
SQL Injection
CSRF (Cross Site Request Forgery)
Bypassing Administrative Portals
Medium Security
OS Command Injection
Unrestricted File-Upload
Bypassing Administrative Portals
High Security
Unrestricted File-Upload
Advertisements