EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test.

Slides:



Advertisements
Similar presentations
Approaches to meeting the PCI Vulnerability Management and Penetration Testing Requirements Clay Keller.
Advertisements

HI-TEC 2011 SQL Injection. Client’s Browser HTTP or HTTPS Web Server Apache or IIS HTML Forms CGI Scripts Database SQL Server or Oracle or MySQL ODBC.
FIRST SESSION - XAMPP Jeongmin Lee.  Jeongmin Lee  CS  PHD  Machine Learning, AI  Web System Development.
OpenVAS —A how-to guide about the most popular vulnerability test tool
Content Management, Working with WordPress Pavel Ivanov Telerik Corporation
OpenVAS —A how-to guide about the most popular vulnerability test tool
Apache Web Server Quick and Dirty Steve Gibbard for SANOG 16 (Originally by Joel Jaeggli for AfNOG 2007) ‏
The Apache Web Server  Started in April 1996 as an open source multiplatform web server (Windows, FreeBSD, UNIX, and Linux compatible).  Now the world’s.
OpenVAS Vulnerability Assessment Group 5 Igibek Koishybayev; Yingchao Zhu ChenQian; XingyuWu; XuZhuo Zhang.
Sara SartoliAkbar Siami Namin NSF-SFS workshop July 14-18, 2014.
Browser Exploitation Framework (BeEF) Lab
Apache : Installation, Configuration, Basic Security Presented by, Sandeep K Thopucherela, ECE Department.
PHP Scripting Language. Introduction “PHP” is an acronym for “PHP: Hypertext Preprocessor.” It is an interpreted, server-side scripting language. Originally.
E-Commerce The technical side. LAMP Linux Linux Apache Apache MySQL MySQL PHP PHP All Open Source and free packages. Can be installed and run on most.
OpenVAS A how-to guide about the most popular vulnerability test tool
SquirrelMail for Webmail AfNOG 2012 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Serrekunda, Gambia (Original Materials by Joelja)
Electronic Medical Record OpenEMR. Covered Topics 1 Getting Started 2 Setting up your clinic 3 Adding a new patient 4 Using your calendar.
SquirrelMail for Webmail AfNOG 2013 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Lusaka, Zambia (Original Materials by Joelja)
SEEM4570: XAMPP, Eclipse, Summary of Html Kangfei Zhao Room 711,ERB
SYST Web Technologies SYST Web Technologies Installing a Web Server (XAMPP)
BY Zoher & Mahmoud. What is WAMP?  - Acronym for Windows/Apache/MySQL/PHP, Python, (and/or) PERL  - WAMP refers to a set of free open source applications,
W3af LUCA ALEXANDRA ADELA – MISS 1. w3af  Web Application Attack and Audit Framework  Secures web applications by finding and exploiting web application.
Web Server Configuration Alokes Chattopadhyay Computer & Informatics Centre IIT Kharagpur.
DSD Course – Project Status Presentation School of Innovation, Design and Engineering Malardalen University Dec 4 th,
Lixin Tao, Li-Chiou Chen & Chienting Lin Pace University
WEB SECURITY WEEK 3 Computer Security Group University of Texas at Dallas.
MCDevOps Infrastructure In One Hour. Sponsors Improving Enterprises Software Development.
April 14, 2008 Secure Coding Faculty Workshop Web Application Security: Exercise Development Approaches James Walden
CSE 4481 Computer Security Lab Mark Shtern. INTRODUCTION.
Web Scripting [PHP] CIS166AE Wednesdays 6:00pm – 9:50pm Rob Loy.
CSE 4481 Computer Security Lab Mark Shtern. INTRODUCTION.
Ozan Şahin Ömer Üçler.  Purpose of Project  Used Technologies  Database Design  Problems&Solutions  Use Case’s  Demo.
1 Security Penetration Testing Angela Davis Mrinmoy Ghosh ECE4112 – Internetwork Security Georgia Institute of Technology.
Web Applications Testing By Jamie Rougvie Supported by.
Apache Web Server Quick and Dirty Ayitey Bulley for AfNOG 2011 (Originally by Joel Jaeggli for AfNOG 2007) ‏
1 Session 1: Introduction to PHP & MySQL iNET Academy Open Source Web Development.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
Server Side Scripting. Common Gateway Interface (CGI) The web is a client-server system.
EECS 354: Network Security Group Members: Patrick Wong Eric Chan Shira Schneidman Web Attacks Project: Detecting XSS and SQL Injection Vulnerabilities.
Securing Web Access Senior Design III – Spring 2009 Matt Shea.
Web Server Apache PHP HTTP Request User types URL into browser Address resolved if nec. We use directly Most browsers request.
Small Business Server 2003 Linux Small Business Server versus Linux functionality.
Intro to APACHE, MySQL, and PHP & freely available (hackable) Packages Aonghus Sugrue 04 Oct 2012.
Mark Shtern.  Our life depends on computer systems  Traffic control  Banking  Medical equipment  Internet  Social networks  Growing number of.
SquirrelMail for Webmail Quick and Dirty Michuki Mwangi for AfNOG 2010.
MIS Week 5 Site:
XAMPP.
Hacker Games By Wenonah Abadilla. What is a Hacker Game? Learn and practice security concepts Fun-filled games.
Outline  XAMPP  XAMPP Install  Put php and HTML documents  Windows and Mac Version  Security.
Group 18: Chris Hood Brett Poche
Final Year Project Agree or Dis-agree?.
Setup a PHP + MySQL Development Environment
WordPress Introduction
WEB APPLICATION TESTING
COP 4343 Unix System Administration
CONTENT MANAGEMENT SYSTEM CSIR-NISCAIR, New Delhi
SquirrelMail for Webmail
Penetration Testing Karen Miller.
(Originally by Joel Jaeggli for AfNOG 2007)‏
Drupal VM and Docker4Drupal For Drupal Development Platform
Drupal VM and Docker4Drupal as Consistent Drupal Development Platform
Myths About Web Application Security That You Need To Ignore.
IS3440 Linux Security Unit 9 Linux System Logging and Monitoring
Information system Management
AppExchange Security Certification
Information system Management
System & Network Administration (MCSA & RHCSA)
Web Servers (IIS and Apache)
XAMPP.
Presentation transcript:

EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test

EC521: Cybersecurity OpenVAS Agenda What we have done? How OpenVAS work? Mailbox Browser Web application with XSS vulnerabilities What to do next… 2

EC521: Cybersecurity OpenVAS What we have done? We were divided into 4 parts and each in charge of web server, web application, mailbox, and web browser. learning the basic protocols that running on the contemporary Internet(basic knowledge charging) Research (a lot of reading): – OpenVAS – documentation – How to setup and run the OpenVAS – Understanding the vulnerability of Mailbox Coding – Web Application – Writing scripts 3

What we have done? Build up the working environment Kali linux OS(set up on virtual machine) install openVAS in Kali linux Find and study(then maybe audit) open source files to set up our targets(i.e. mailbox etc.) Use openVAS to give initial test scan to these targets Then figure out how we can utilize these vulnerability 4

EC521: Cybersecurity OpenVAS DEMO - OpenVAS 5

OpenVAS Source Packages Installation NVT sync, Add admin/user GSA:

EC521: Cybersecurity OpenVAS 8

9

10

EC521: Cybersecurity OpenVAS 11

EC521: Cybersecurity OpenVAS 12

EC521: Cybersecurity OpenVAS 13

EC521: Cybersecurity OpenVAS 14 Target – Xampp/DVWA

EC521: Cybersecurity OpenVAS 15 XAMPP's name is an acronym for: X (to be read as "cross", meaning cross-platform) Apache HTTP Server MySQL PHP Perl xampp

DVWA Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment. EC521: Cybersecurity OpenVAS 16

EC521: Cybersecurity OpenVAS 17

EC521: Cybersecurity OpenVAS 18

EC521: Cybersecurity OpenVAS 19

EC521: Cybersecurity OpenVAS 20

EC521: Cybersecurity OpenVAS 21 Webmail Vulnerability

EC521: Cybersecurity OpenVAS Webmail vulnerability Mail Server Set-Up Environment (Local) OS: CentOS-6.5 SMTP: Postfix Sasl IMAP/POP3: Dovecot-2.0 Web: Apache-2.2 Webmail: Openwebmail-2.30 (perl)/ Squirrelmail (php) 22

EC521: Cybersecurity OpenVAS Webmail vulnerability Postfix Configure: main.cf Enable Sasl: smtpd_sasl_auth_enable = yes Dovecot Protocol = pop3(port: 110) imap(port: 143) Netstat –tulpn | grep dovecot 23

EC521: Cybersecurity OpenVAS Webmail vulnerability Openwebmail Online Demo Install openwebmail-2.30.tar.gz 24

EC521: Cybersecurity OpenVAS Openwebmail Vulnerbilities 25

EC521: Cybersecurity OpenVAS Openwebmail Ver

EC521: Cybersecurity OpenVAS Webmail vulnerability Apache Httpd config: /etc/httpd/conf/httpd.conf set directory Serv. restart : /etc/init.d/httpd restart localhost/cgi-bin/openwebmail/openwebmail.pl 27

EC521: Cybersecurity OpenVAS 28

EC521: Cybersecurity OpenVAS 29

EC521: Cybersecurity OpenVAS 30

EC521: Cybersecurity OpenVAS 31 First Try

EC521: Cybersecurity OpenVAS Webmail vulnerability Next… Keep digging vulnerabilities (Maybe elder ver.) Patches & Penetration (Burpsuite) Localhost =>LAN 32

EC521: Cybersecurity OpenVAS 33 Web Application (Blackboard)

EC521: Cybersecurity OpenVAS DEMO: Web Application (Blackboard) Description: Blackboard is the web application used by students to post their homework solutions, which vulnerable to XSS and CSRF attack. 34

EC521: Cybersecurity OpenVAS DEMO: Web Application (Blackboard) Story on behalf: You (hacker) don’t know solution to the homework and want to steal the solutions from others. Also you want to steal final exam questions from teacher in a such way that no one will find out that it was you. (i.e. like a ninja) 35

EC521: Cybersecurity OpenVAS DEMO: Web Application (Blackboard) Mission: 1.Steal the solutions from “nerd”; 2.Make “badguy” to steal final exam q/a for you; 3.Be the smartest guy (ninja, hacker) in the class; 36

EC521: Cybersecurity OpenVAS DEMO: Web Application (Blackboard) Wait a minute…where is OpenVAS??? We will make security assessment on our web application using OpenVAS. (in near future) 37

EC521: Cybersecurity OpenVAS What to do next… Write plugins – OpenVAS Integrate everything Modify the php code in DVWA, do the openvas scan again, compare the report Local => LAN; Penetration (Burpsuite) and Patches 38

EC521: Cybersecurity OpenVAS Questions? 39

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.