Presentation is loading. Please wait.

Presentation is loading. Please wait.

EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test.

Published byBrandon Leonard Modified over 8 years ago

Similar presentations

Presentation on theme: "EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test."— Presentation transcript:

1 EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test

2 EC521: Cybersecurity OpenVAS Agenda What we have done? How OpenVAS work? Mailbox Browser Web application with XSS vulnerabilities What to do next… 2

3 EC521: Cybersecurity OpenVAS What we have done? We were divided into 4 parts and each in charge of web server, web application, mailbox, and web browser. learning the basic protocols that running on the contemporary Internet(basic knowledge charging) Research (a lot of reading): – OpenVAS – documentation – How to setup and run the OpenVAS – Understanding the vulnerability of Mailbox Coding – Web Application – Writing scripts 3

4 What we have done? Build up the working environment Kali linux OS(set up on virtual machine) install openVAS in Kali linux Find and study(then maybe audit) open source files to set up our targets(i.e. mailbox etc.) Use openVAS to give initial test scan to these targets Then figure out how we can utilize these vulnerability 4

5 EC521: Cybersecurity OpenVAS DEMO - OpenVAS 5

6 OpenVAS Source Packages Installation NVT sync, Add admin/user GSA: https://localhost:9392/

7

8 EC521: Cybersecurity OpenVAS 8

9 9

10 10

11 EC521: Cybersecurity OpenVAS 11

12 EC521: Cybersecurity OpenVAS 12

13 EC521: Cybersecurity OpenVAS 13

14 EC521: Cybersecurity OpenVAS 14 Target – Xampp/DVWA

15 EC521: Cybersecurity OpenVAS 15 XAMPP's name is an acronym for: X (to be read as "cross", meaning cross-platform) Apache HTTP Server MySQL PHP Perl xampp

16 DVWA Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment. EC521: Cybersecurity OpenVAS 16

17 EC521: Cybersecurity OpenVAS 17

18 EC521: Cybersecurity OpenVAS 18

19 EC521: Cybersecurity OpenVAS 19

20 EC521: Cybersecurity OpenVAS 20

21 EC521: Cybersecurity OpenVAS 21 Webmail Vulnerability

22 EC521: Cybersecurity OpenVAS Webmail vulnerability Mail Server Set-Up Environment (Local) OS: CentOS-6.5 SMTP: Postfix-2.6 + Sasl IMAP/POP3: Dovecot-2.0 Web: Apache-2.2 Webmail: Openwebmail-2.30 (perl)/ Squirrelmail-1.4.22 (php) 22

23 EC521: Cybersecurity OpenVAS Webmail vulnerability Postfix Configure: main.cf Enable Sasl: smtpd_sasl_auth_enable = yes Dovecot Protocol = pop3(port: 110) imap(port: 143) Netstat –tulpn | grep dovecot 23

24 EC521: Cybersecurity OpenVAS Webmail vulnerability Openwebmail http://www.openwebmail.org/ Online Demo http://openwebmail.amcpl.net/http://openwebmail.amcpl.net/ Install openwebmail-2.30.tar.gz 24

25 EC521: Cybersecurity OpenVAS Openwebmail Vulnerbilities 25

26 EC521: Cybersecurity OpenVAS Openwebmail Ver. 2.30 26

27 EC521: Cybersecurity OpenVAS Webmail vulnerability Apache Httpd config: /etc/httpd/conf/httpd.conf set directory Serv. restart : /etc/init.d/httpd restart localhost/cgi-bin/openwebmail/openwebmail.pl 27

28 EC521: Cybersecurity OpenVAS 28

29 EC521: Cybersecurity OpenVAS 29

30 EC521: Cybersecurity OpenVAS 30

31 EC521: Cybersecurity OpenVAS 31 First Try

32 EC521: Cybersecurity OpenVAS Webmail vulnerability Next… Keep digging vulnerabilities (Maybe elder ver.) Patches & Penetration (Burpsuite) Localhost =>LAN 32

33 EC521: Cybersecurity OpenVAS 33 Web Application (Blackboard)

34 EC521: Cybersecurity OpenVAS DEMO: Web Application (Blackboard) Description: Blackboard is the web application used by students to post their homework solutions, which vulnerable to XSS and CSRF attack. 34

35 EC521: Cybersecurity OpenVAS DEMO: Web Application (Blackboard) Story on behalf: You (hacker) don’t know solution to the homework and want to steal the solutions from others. Also you want to steal final exam questions from teacher in a such way that no one will find out that it was you. (i.e. like a ninja) 35

36 EC521: Cybersecurity OpenVAS DEMO: Web Application (Blackboard) Mission: 1.Steal the solutions from “nerd”; 2.Make “badguy” to steal final exam q/a for you; 3.Be the smartest guy (ninja, hacker) in the class; 36

37 EC521: Cybersecurity OpenVAS DEMO: Web Application (Blackboard) Wait a minute…where is OpenVAS??? We will make security assessment on our web application using OpenVAS. (in near future) 37

38 EC521: Cybersecurity OpenVAS What to do next… Write plugins – OpenVAS Integrate everything Modify the php code in DVWA, do the openvas scan again, compare the report Local => LAN; Penetration (Burpsuite) and Patches 38

39 EC521: Cybersecurity OpenVAS Questions? 39

Download ppt "EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test."

Similar presentations

Approaches to meeting the PCI Vulnerability Management and Penetration Testing Requirements Clay Keller.

Approaches to meeting the PCI Vulnerability Management and Penetration Testing Requirements Clay Keller.
HI-TEC 2011 SQL Injection. Client’s Browser HTTP or HTTPS Web Server Apache or IIS HTML Forms CGI Scripts Database SQL Server or Oracle or MySQL ODBC.

HI-TEC 2011 SQL Injection. Client’s Browser HTTP or HTTPS Web Server Apache or IIS HTML Forms CGI Scripts Database SQL Server or Oracle or MySQL ODBC.
FIRST SESSION - XAMPP Jeongmin Lee.  Jeongmin Lee  CS  PHD  Machine Learning, AI  Web System Development.

FIRST SESSION - XAMPP Jeongmin Lee.  Jeongmin Lee  CS  PHD  Machine Learning, AI  Web System Development.
OpenVAS —A how-to guide about the most popular vulnerability test tool

OpenVAS —A how-to guide about the most popular vulnerability test tool
Content Management, Working with WordPress Pavel Ivanov Telerik Corporation www.telerik.com.

Content Management, Working with WordPress Pavel Ivanov Telerik Corporation
OpenVAS —A how-to guide about the most popular vulnerability test tool

OpenVAS —A how-to guide about the most popular vulnerability test tool
Apache Web Server Quick and Dirty Steve Gibbard for SANOG 16 (Originally by Joel Jaeggli for AfNOG 2007) ‏

Apache Web Server Quick and Dirty Steve Gibbard for SANOG 16 (Originally by Joel Jaeggli for AfNOG 2007) ‏
The Apache Web Server  Started in April 1996 as an open source multiplatform web server (Windows, FreeBSD, UNIX, and Linux compatible).  Now the world’s.

The Apache Web Server  Started in April 1996 as an open source multiplatform web server (Windows, FreeBSD, UNIX, and Linux compatible).  Now the world’s.
OpenVAS Vulnerability Assessment Group 5 Igibek Koishybayev; Yingchao Zhu ChenQian; XingyuWu; XuZhuo Zhang.

OpenVAS Vulnerability Assessment Group 5 Igibek Koishybayev; Yingchao Zhu ChenQian; XingyuWu; XuZhuo Zhang.
Sara SartoliAkbar Siami Namin NSF-SFS workshop July 14-18, 2014.

Sara SartoliAkbar Siami Namin NSF-SFS workshop July 14-18, 2014.
Browser Exploitation Framework (BeEF) Lab

Browser Exploitation Framework (BeEF) Lab
Apache : Installation, Configuration, Basic Security Presented by, Sandeep K Thopucherela, ECE Department.

Apache : Installation, Configuration, Basic Security Presented by, Sandeep K Thopucherela, ECE Department.
PHP Scripting Language. Introduction “PHP” is an acronym for “PHP: Hypertext Preprocessor.” It is an interpreted, server-side scripting language. Originally.

PHP Scripting Language. Introduction “PHP” is an acronym for “PHP: Hypertext Preprocessor.” It is an interpreted, server-side scripting language. Originally.
E-Commerce The technical side. LAMP Linux Linux Apache Apache MySQL MySQL PHP PHP All Open Source and free packages. Can be installed and run on most.

E-Commerce The technical side. LAMP Linux Linux Apache Apache MySQL MySQL PHP PHP All Open Source and free packages. Can be installed and run on most.
OpenVAS A how-to guide about the most popular vulnerability test tool

OpenVAS A how-to guide about the most popular vulnerability test tool
SquirrelMail for Webmail AfNOG 2012 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Serrekunda, Gambia (Original Materials by Joelja)

SquirrelMail for Webmail AfNOG 2012 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Serrekunda, Gambia (Original Materials by Joelja)
Electronic Medical Record OpenEMR. Covered Topics 1 Getting Started 2 Setting up your clinic 3 Adding a new patient 4 Using your calendar.

Electronic Medical Record OpenEMR. Covered Topics 1 Getting Started 2 Setting up your clinic 3 Adding a new patient 4 Using your calendar.
SquirrelMail for Webmail AfNOG 2013 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Lusaka, Zambia (Original Materials by Joelja)

SquirrelMail for Webmail AfNOG 2013 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Lusaka, Zambia (Original Materials by Joelja)
SEEM4570: XAMPP, Eclipse, Summary of Html Kangfei Zhao Room 711,ERB

SEEM4570: XAMPP, Eclipse, Summary of Html Kangfei Zhao Room 711,ERB
SYST 28043 Web Technologies SYST 28043 Web Technologies Installing a Web Server (XAMPP)

SYST Web Technologies SYST Web Technologies Installing a Web Server (XAMPP)

Similar presentations

Ads by Google