https://github.com/masterivanic/web-attack-lab

This a ready to go lab for pentesting and web attack environnement
https://github.com/masterivanic/web-attack-lab

Last synced: 10 months ago
JSON representation

This a ready to go lab for pentesting and web attack environnement

Host: GitHub
URL: https://github.com/masterivanic/web-attack-lab
Owner: masterivanic
Created: 2025-09-06T17:59:58.000Z (10 months ago)
Default Branch: main
Last Pushed: 2025-09-06T20:45:27.000Z (10 months ago)
Last Synced: 2025-09-06T22:24:19.062Z (10 months ago)
Language: Shell
Size: 0 Bytes
Stars: 0
Watchers: 0
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

## WEB ATTACK LAB

# Vulnerability Support Configuration (PHP Settings)

- To intentionally make the DVWA environment vulnerable and suitable for exploitation practice, specific PHP configurations were modified:
```sh
display_errors = On
```

- Displays error messages directly in the browser, which can leak sensitive details like file paths, code snippets, and system messages useful for attackers.

```sh
display_startup_errors = On
```

- Enables displaying of PHP startup sequence errors, offering further environment details during application boot that could aid exploitation.

```sh
allow_url_include = On
```

Allows the inclusion of remote files via functions like include() and require(), making Remote File Inclusion (RFI) vulnerabilities possible.

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/masterivanic/web-attack-lab

Awesome Lists containing this project

README