Archive for the ‘Web Hacking’ Category

What is DVWA?

DVWA is web application that is designed to be hacked. It was written using PHP and use MYSQL as its database. There are few level of difficulties for you to test your hacking skill in a legal environtment. It will help web developers, teachers, students or any one who are interested in learning web security application. In Indonesia, 8 years in jail for hacking penalty. So, dvwa is a good option.

Before we start, I assume that you are already has and familiar with Docker Container and XAMPP server. If not, you can read my article about how to install xampp in docker.

Lets start. First, you have to download the dvwa application and xampp from its source:

In this tutorial, I use xubuntu 18.04 64bit as host, Docker 18.09.9, i386/ubuntu:bionic for docker image and XAMPP for Linux 7.1.32 for php/mysql server.

Step 1. Copy dvwa files to opt/lampp/htdocs directory in docker container

First, you have to extract the file DVWA-master.zip
darklinux@darklinuxpc:~$ ls -l DVWA-master.zip
-rw-rw-r-- 1 darklinux darklinux 1350473 Mei 11 15:20 DVWA-master.zip
darklinux@darklinuxpc:~$ unzip DVWA-master.zip



Read Full Post »

What is proxy?

According to Webster Dictionary (http://www.merriam-webster.com), proxy came from Middle English proxi. There are few meanings about it,

  • the agency, function, or office of a deputy who acts as a substitute for another.

  • authority, power to act for another

  • a person authorized to work for another

In computer term, there is no exact description what is proxy. To make it easy to understand, I may say proxy is as an application that acts as a substitute for another applications. At the first time, proxy was designed to create cache files every time we surf on the internet because at the beginning, internet access was not as fast as what we have now. So, if we use cache files, next time we visit the same website, computer doesn’t have to download all the contents again because it’s already saved in the cache files which it will increase the downloading speed.

Now internet connection is getting faster, faster and faster. We still need cache program but not as much as before. Proxy still do its job but it has an additional job, firewall. With proxy, Network Administrator can block Ports, Internet Link and even set bandwidth quota.

We can set Proxy in one computer.


Read Full Post »