BTS PEN-TESTING LAB

DVWA, Mutillidae စတဲ့ pen-testing lab ေတြလုိပါပဲ။ ဒီ Lab မွာလည္း ကြ်န္ေတာ္တုိ႔အေနနဲ႔ ေအာက္ပါ vulnerability ေတြကုိ ေလ့လာႏုိင္မွာျဖစ္ပါတယ္။ SQL injection ထုိးမယ့္ဆရာသမားေတြကေတာ့ ေဆာင္ထားလုိက္ေတာ့ဗ်ာ။ ဖုိင္ဆုိဒ္ကလည္း ေသးေသးေလးရယ္။ Installation ပုိင္းအေသးစိတ္ကုိေတာ့ မေျပာေတာ့ဘူးေနာ္။ 

    SQL Injection
    Cross Site scripting(XSS)
    Cross Site request Forgery(CSRF)
    Clickjacking
    Server Side Request Forgery(SSRF))
    File Inclusion(RFI and LFI)
    Command Execution

Installation:
1. Install XAMPP or WAMPP in your machine
2. Extract the bts_lab zip file into the htdocs folder.
3.  Open the "http://localhost/bts_lab/setup.php" url in your browser.
4. Click the Setup.

[Screenshot]





Download