Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Damn Vulnerable Web Application version 1.0.7
20-09-2010, 05:40 PM,
Post: #1
Damn Vulnerable Web Application version 1.0.7
What’s new?
The vulnerability help page has been improved.
We now display the logged on username along with the vulnerability level and php-ids status.
Blind SQL injection has been implemented.
We now have official documentation.
You can now compare all vulnerable source code in one page with the ‘view all’ button.
The whole theme has been redesigned, including a new great looking logo.
Many bug fixes and small changes throughout the application.

But that’s not all, we have continued the work that Duncan Alderson had done on the 1.0.6 LiveCD, as the LiveCD proved to be a great success. The new LiveCD is not only a vulnerable web application but also a badly configured web server which includes many server misconfiguration.

DVWA 1.0.7 LiveCD specs:
Ubuntu Server 10.04 minimal
XAMPP Linux 1.7.3a (Apache 2.2.14, MySQL 5.1.41, PHP 5.3.1)
WebDav
Fluxbox (optional)
Firefox 3.6.8
Firefox addons include XSS Me, SQL Inject Me, Access Me, Tamper Data, REST Client, HackBar, ShowIP, Useragent Switcher, Firebug, NoScript and more.

The DVWA 1.0.7 LiveCD is designed for the beginner to jump right in to learning web application security or a quick way to demo the severities of a vulnerability to your managers. The great thing about DVWA is its flexibility, whether you want to learn, teach, test or demo, DVWA makes it easy.

DVWA v1.0.7 (latest) - (1.3MB) MD5:c29b089e83d1026b98ce6a97d0e11e50
https://sourceforge.net/projects/dvwa/fi...p/download

DVWA v1.0.7 LiveCD - (480MB) MD5:9484d8e2154d4e01fbd742cd7c10affd
http://www.dvwa.co.uk/DVWA-1.0.7.iso
Please don't make SPAM [posts like: thanks, nice, great, etc]!
http://golok.tk/ GayFace
Reply
07-10-2010, 08:32 PM,
Post: #2
RE: Damn Vulnerable Web Application version 1.0.7
Tips:

1. Lepas dah install, boleh terus run

http://localhost/dvwa/

2. Klu nak run daripada vmware ataupun nak access daripada pc lain, kena edit .htaccess dulu untuk masukkan network address, kalu tak jadilah camni GayFace
[Image: dvwaaccess.png]

p/s:- xde sape2 yg try ni ke?
Please don't make SPAM [posts like: thanks, nice, great, etc]!
http://golok.tk/ GayFace
Reply
07-10-2010, 08:55 PM,
Post: #3
RE: Damn Vulnerable Web Application version 1.0.7
dh try lama dlu dh beserta beberapa lg yg lbh kurg sama jenis ngan ni
http://www.irongeek.com/i.php?page=secur...p-security

komen aku, lg elok donlod versi2 lama/legacy cms seperti joomla ke wordpress ke yg mmg ada yulnerability dan cuba cari (tnpa merujuk mana2 database yuln, exploit-db etc) dgn menganalisis code2nya GayFace
[̲̅ə̲̅٨̲̅٥̲̅٦̲̅]
i ℓ٥ﻻ ﻉ√٥υ F٥rﻉ√ﻉr ღ
|_|0|_|
|_|_|0|
|0|0|0|
http://jonhburn2.freehostia.com/lol.txt
Reply
07-10-2010, 09:00 PM,
Post: #4
RE: Damn Vulnerable Web Application version 1.0.7
betul gak tu..kena mahirkan diri dgn yuln2 lama baru boleh beralih ke yuln2 baru..GayFace
Reply
19-10-2010, 01:19 PM,
Post: #5
RE: Damn Vulnerable Web Application version 1.0.7
Ni ala ala DVL la nih kan?

* t_qooze pakai DVL jerk buat training... huhuhuhu
[Image: mysiggy.jpg]
Reply
19-10-2010, 01:24 PM,
Post: #6
RE: Damn Vulnerable Web Application version 1.0.7
(19-10-2010, 01:19 PM)t_qooze Wrote: Ni ala ala DVL la nih kan?

* t_qooze pakai DVL jerk buat training... huhuhuhu

training? plus webgoat..Big Grin
Reply
19-10-2010, 01:30 PM,
Post: #7
RE: Damn Vulnerable Web Application version 1.0.7
(19-10-2010, 01:24 PM)r3v3r7 Wrote:
(19-10-2010, 01:19 PM)t_qooze Wrote: Ni ala ala DVL la nih kan?

* t_qooze pakai DVL jerk buat training... huhuhuhu

training? plus webgoat..Big Grin

DVL untuk linux, untuk windows kena create sendiri pasal license punya pasal.
Aku ade list untuk sume box2 belasahan ni. Linux, Web Application, tapi kena cari balik GayFace
Please don't make SPAM [posts like: thanks, nice, great, etc]!
http://golok.tk/ GayFace
Reply
19-10-2010, 06:11 PM,
Post: #8
RE: Damn Vulnerable Web Application version 1.0.7
downloading... thanx, bleh dimuatkan dlm pendrive ni selepas di multibootcd.sh-kan oleh aku nanti bersama2 dengan backtrack
Reply


Forum Jump: