Differences between revisions 14 and 15

CPTR 427 Network Security Class

Below is a list of areas we will look at in NetworkSecurity

Often Discussed Topics

-  ⇤ ← Revision 14 as of 2009-11-03 22:02:00 → 
  Size: 1188
  Editor: 24-183-238-75
  Comment:
+   ← Revision 15 as of 2009-11-03 22:05:02 → ⇥
  Size: 403
  Editor: 24-183-238-75
  Comment:
-Deletions are marked like this.
+Additions are marked like this.
 Line 6:
-Below is a list of subpages for NetworkSecurity
+Below is a list of areas we will look at in NetworkSecurity
 Line 9:
-== Using WebScarab with WebGoat ==

  1. Start up WebScarab.  It may be in basic mode.  
     a. If it is, Go to Tools->Use Full Interface.  
     a. Restart WebScarab.  
  1. Fire up IE and go to Tools->Internet Options->Connections->LAN settings.  
  1. Check Use proxy server and set address to localhost port 8008.  
  1. Click OK and OK.  
  1. On WebScarab go to Proxy->Manual Edit.  Check Intercept Requests.  Select GET and POST (using the CTRL key to select both).  
  1. In IE go to http://localhost./WebGoat/attack. (notice the dot after localhost, it is required to apply proxy settings on localhost.)  WebScarab should already start intercepting.  The lessons should work after that.  I was able to do a command injection following the steps in the solution.  I have now put the proxy settings back to the way they were and shut down WebGoat (for security reasons, not sure if that was necessary but I did it.)
+   * [[NetworkSecurity/Tools]]
   * [[NetworkSecurity/Hacking]]
   * [[NetworkSecurity/Encryption]]
   * [[NetworkSecurity/WebScarab]]