Installing and Configuring WebGoat

-
After doing some research, I found WebGoat. WebGoat is a deliberately insecure web application developed by the Open Web Application Security Project (OWASP) and was developed to teach users how to learn web application penetration testing. More information on OWASP can be found at https://www.owasp.org.

To install WebGoat, the following is needed:

  1. Linux (for my purposes, I am using Kali Linux) https://www.kali.org/downloads/  

It is important to note that many Linux systems come preconfigured with Java out of the box. An easy way to find out is by running the simple command java -version

The architecture of WebGoat is very simple. The diagram below shows exactly what is required (other than the Java dependency).

Arch.png

Steps to Installing and Configuring WebGoat

  1. Open a terminal window in your Kali environment.

  1. Install Apache Tomcat using the following command: apt-get install tomcat8














  1. Start the Tomcat server by running the following command: service tomcat8 start
    Start Tomcat.png

  1. Open a web browser in the Linux system and navigate to 127.0.0.1:8080 to ensure that Tomcat is both installed correctly and it is running.
    Screenshot from 2017-09-24 12-07-17.png

  1. Next, install WebGoat by entering the following command: wget https://s3.amazonaws.com/webgoat-war/webgoat-container-7.0-SNAPSHOT-war-exec.jar
    Install WebGoat.png

  1. To run WebGoat, enter java -jar webgoat-container-7.0-SNAPSHOT-war-exec.jar -httpPort 9090
    Run WebGoat.png

OPTIONAL: By default, WebGoat will run on port 8080, however, I chose to run it on 9090 by appending the -httpPort 9090 command. If you want to leave it running on port 8080, just omit the -httpPort 9090 part of the command in step 6.

Once these steps have been completed, navigate to 127.0.01:9090/WebGoat to see if WebGoat was successfully installed. If so, you should see the screen below.












Comments

Post a Comment

Popular posts from this blog

Exploiting Local File Inclusion to Gain Shell Access

-
Image
This exploit is aimed at exploiting local file inclusions. The ability to exploit this occurs when a web application uses a path to a file “has to be included as an input without treating it as untrusted input. This would allow a local file to be supplied to the include statement” ( https://www.acunetix.com/blog/articles/local-file-inclusion-lfi/ ). Before running through this exploit, let’s first define what local file inclusion (LFI) is. According to Ian Muscat, LFI “refers to an inclusion attack through which an attacker can trick the web application in including files on the web server by exploiting functionality that dynamically includes local files or scripts. The consequence of a successful LFI attack includes Directory Traversal and Information Disclosure as well as Remote Code Execution” (Muscat, 2017). With this working definition, let's get started running through how I conducted this exploitation. As always, I used Kali Linux as my attacker machine ( https://www.
Read more

Master Port List

-
TCP  0  Reserved TCP  1  Port Service Multiplexer TCP  2  Management Utility TCP  3  Compression Process TCP  4  Unassigned TCP  5  Remote Job Entry TCP  6  Unassigned TCP  7  Echo TCP  8  Unassigned TCP  9  Discard TCP  10  Unassigned TCP  11  Active Users TCP  12  Unassigned TCP  13  Daytime (RFC 867) TCP  14  Unassigned TCP  15  Unassigned [was netstat] TCP  16  Unassigned TCP  17  Quote of the Day TCP  18  Message Send Protocol TCP  19  Character Generator TCP  20  File Transfer [Default Data] TCP  21  File Transfer [Control] TCP  22  SSH Remote Login Protocol TCP  23  Telnet TCP  24  any private mail system TCP  25  Simple Mail Transfer TCP  26  Unassigned TCP  27  NSW User System FE TCP  28  Unassigned TCP  29  MSG ICP TCP  30  Unassigned TCP  31  MSG Authentication TCP  32  Unassigned TCP  33  Display Support Protocol TCP  34  Unassigned TCP  35  any private printer server TCP  36  Unassigned TCP  37  Time / W32.Sober.I virus TCP  38  Route Access Protocol TCP  39  Resource Loca
Read more

Exploiting File Upload Vulnerabilities with DVWA

-
Image
This exercise explores vulnerabilities associated with file uploads. The target machine was the Damn Vulnerable Web Application (DVWA) found at http://www.dvwa.co.uk/ however, this web application came preinstalled with Metasploitable 2 found at https://information.rapid7.com/metasploitable-download.html . DVWA, according to its website, “is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a classroom environment” ( http://www.dvwa.co.uk/ ). Metasploitable “is virtual machine based on Linux that contains several intentional vulnerabilities for you to exploit. Metasploitable is essentially a penetration testing lab in a box, available as a VMware virtual machine (VMX),” ( https://information.rapid7.com/metasploitabl
Read more