Ready for the real environment experience?
In this lab, you will be attacking a Linux machine named Metasploitable, running the Damn Vulnerable Web App (DVWA). The DVWA is an open source web app written to be vulnerable to a host of different security exploits, designed for security professionals to practice their skills and conduct research.
You will be attempting a dictionary attack to discover a password using Burp Suite and Hydra. Burp Suite is a GUI tool for testing web application security. Hydra is a password cracking tool that attempts to crack passwords by sending either a dictionary of usernames and passwords at a login service or trying all possible combinations in a brute force configuration.
This lab is part of a series on cyber network security.
Upon completion of this lab you will be able to:
Demonstrate how to use Hydra and Burp Suite to attack a web-based login service by performing a dictionary attack on the DVWA login web-app
This lab is intended for:
- Cyber and network security specialists
You should possess:
- A basic understanding of Windows operating system environments
QA is the UK's biggest training provider of virtual and online classes in technology, project management and leadership.