Skip to content

Latest commit

 

History

History
235 lines (160 loc) · 5.86 KB

File metadata and controls

235 lines (160 loc) · 5.86 KB

DVWA Web Application Testing


Scope Definition

the scope part

26



Spidering the Website (OWASP ZAP)

to spider the web we can do a lot of things but lets use zapproxy bcs it is free and enter our target

Screenshot 2025-12-29 232346



now all is good lets begin and use spider tool bcs we only need to spider the website no need to automate test

Screenshot 2025-12-29 232322



and good we got it all

Screenshot 2025-12-29 232434



Brute Force Attack

now lets try brute force part

21



use intruder cluster bomb type attack and put username wordlist or put names

22



put password wordlist or put passwords

23



and we can see here username admin and password lets try them

24



and boom we got it

25



Reflected XSS

this is the xss reflected part

1



we will try simple injection

<scipt>alert("hacked")</scipt>

2



and yup we got it now make it medium

3



try same thing and failed

4



lets try

<SCRIPT>alert("hacked")</script>

5



yup we got it now lets make it high

6



we will try like

<img src=x onerror=alert("hacked")>

7



yup nice and we can see it worked

8



Stored XSS

now go to stored xss part

9



try

<script>alert("hacked")</script>

on message parameter

10



and we got it and now lets try same methodology on medium

11



oops it fail

12



try this

<scr<script>ipt>alert("hacked")</script>

13



and failed

14



we will try in the name parameter but make the length bigger

15



and boom we got it

16



Cookie Stealing & DOM Manipulation

lets try in the reflected part to steal cookies

17



and yup we got it

18



change the background color with

<script>document.body.style.backgroundColor='red';</script>

19



and we succeed

20



SQL Injection

the sql part

27



intercept it and send to repeater and try simple query but failed

28



oops forgot to url encode it

29



and boom

30



lets try to see other things like passwords

1' UNION SELECT user, password FROM users #

31