Pentesting2015: Difference between revisions
Jump to navigation
Jump to search
(→Links) |
Paul Wilhelm (talk | contribs) m (→Links) |
||
| Line 11: | Line 11: | ||
*Applikationen: https://github.com/OWASP/OWASP-VWAD/blob/master/src/offline.tsv |
*Applikationen: https://github.com/OWASP/OWASP-VWAD/blob/master/src/offline.tsv |
||
*intercepting Proxy: https://portswigger.net/burp/download.html |
*intercepting Proxy: https://portswigger.net/burp/download.html |
||
*Applikations, Virtual Machines und ISOs (siehe jeweils Tab): https://www.owasp.org/index.php/OWASP_Vulnerable_Web_Applications_Directory_Project#tab=On-Line_apps |
|||
Revision as of 15:11, 28 September 2015
Wikiseite für das Thema Pentesting vom IT-Security Workshop 2015.
allgemeine Planung
Einarbeitung ins Pentesting für Web-Applikationen mit Hilfe von dvwa.
Links
- dvwa : http://www.dvwa.co.uk/
- alte Projekte: http://blog.taddong.com/2011/10/hacking-vulnerable-web-applications.html
- VMs: https://www.owasp.org/index.php/OWASP_Vulnerable_Web_Applications_Directory_Project/Pages/VMs
- Applikationen: https://github.com/OWASP/OWASP-VWAD/blob/master/src/offline.tsv
- intercepting Proxy: https://portswigger.net/burp/download.html
- Applikations, Virtual Machines und ISOs (siehe jeweils Tab): https://www.owasp.org/index.php/OWASP_Vulnerable_Web_Applications_Directory_Project#tab=On-Line_apps