However, the following pre-requisite videos cover these topics using older versions of Mutillidae. Authentication Bypass (Cookie Tampering)īefore the workshop began, students were expected to have Mutillidae and Burp-Suite installed and operational so these topic were not covered.Injection point identification, prefixes, suffixes, and context.Topics which were generally covered were: Donations are given by browsing to then clicking the “ Make a one-time donation directly to the Long family” link. He moved to Africa in order to build computer training facilities in Uganda. Johnny Long is a well-known speaking and author otherwise known as "j0hnny" or "j0hnnyhax". The workshop was done to support the Long family.
BURP SUITE TUTORIAL PART 2 MAC OSX
Mac OSX is not officially supported but Mutillidae and Burp-Suite have been known to run well using MAMP and Java respectively. They may be installed on the same host or two different hosts (more realistic). Both Mutillidae and Burp-Suite may be installed on Windows or Linux. The interception proxy used is Burp Suite 1.5 Free edition. It contains 42 vulnerabilities in many different context. Mutillidae 2.5 is developed by Jeremy Druin (aka webpwnized). The demonstrations were performed on Mutillidae 2.5 a deliberately vulnerable web application freely available on Sourceforge.
The KY ISSA hosted a one-day web application pen testing workshop in support of the Johnny Long family which many know from Hackers for Charity.
Instructors: Jeremy Druin (webpwnized), Conrad Reynolds, Adrian Crenshaw (Irongeek) Twitter: Title: ISSA KY Web Application Pen Testing Workshop Tools Used: Mutillidae 2.5.7 (hxxp:///projects/mutillidae/), Burp Suite 1.5 Free Edition Recorded By: Adrian Crenshaw of
0 kommentar(er)
