Skip to content
Snippets Groups Projects
Commit a89d9adc authored by Vincent Mazenod's avatar Vincent Mazenod
Browse files

update

parent 10e0068f
No related branches found
No related tags found
No related merge requests found
Pipeline #11415 failed
Stage: build
Stage: deploy
Hide whitespace changes
Inline Side-by-side
content/Etudiants/zz2-f5-websec.md
+ 25
49
View file @ a89d9adc
......@@ -228,18 +228,7 @@ Tags: cours
* [https://github.com/digininja/DVWA#linux-packages](https://github.com/digininja/DVWA#linux-packages)
## Recréer l'environnement de cours dans VirtualBox
* testé avec [VirtualBox 5.2.18](https://download.virtualbox.org/virtualbox/5.2.18/virtualbox-5.2_5.2.18-124319~Ubuntu~bionic_amd64.deb) sous [Ubuntu Bionic](http://releases.ubuntu.com/bionic/)
* et les [extensions pack associés](https://download.virtualbox.org/virtualbox/5.2.18/Oracle_VM_VirtualBox_Extension_Pack-5.2.18.vbox-extpack)
```
VBoxManage extpack install Oracle_VM_VirtualBox_Extension_Pack-5.2.18.vbox-extpack
```
sous windows vous devrez peut être utiliser le path entier de vboxmanage
```
"C:\Program Files\Oracle\VirtualBox\VBoxManage.exe"
```
* testé avec [VirtualBox 7.0](https://www.virtualbox.org/wiki/Downloads) sous [Ubuntu jammy](http://releases.ubuntu.com/jammy/)
### Créer un réseau NAT
......@@ -251,12 +240,12 @@ vboxmanage natnetwork add --netname natwebsec --network "172.16.76.0/24" --enab
voir [https://drive.mesocentre.uca.fr/d/69e5535b0b88425396d7/](https://drive.mesocentre.uca.fr/d/69e5535b0b88425396d7/)
```bash
wget https://drive.mesocentre.uca.fr/d/69e5535b0b88425396d7/files/?p=/debian.ova&dl=1
wget https://drive.mesocentre.uca.fr/d/69e5535b0b88425396d7/files/?p=/proxy.ova&dl=1
wget https://drive.mesocentre.uca.fr/d/69e5535b0b88425396d7/files/?p=/kali.ova&dl=1
wget https://drive.mesocentre.uca.fr/d/69e5535b0b88425396d7/files/?p=/thenetwork.ova&dl=1
```
* [kali.ova](https://drive.mesocentre.uca.fr/d/69e5535b0b88425396d7/files/?p=/kali.ova&dl=1)
* [dvwa.ova](https://drive.mesocentre.uca.fr/d/69e5535b0b88425396d7/files/?p=/dvwa.ova&dl=1)
* [debian.ova](https://drive.mesocentre.uca.fr/d/69e5535b0b88425396d7/files/?p=/debian.ova&dl=1)
* [proxy.ova](https://drive.mesocentre.uca.fr/d/69e5535b0b88425396d7/files/?p=/proxy.ova&dl=1)
* [thenetwork](https://drive.mesocentre.uca.fr/d/69e5535b0b88425396d7/files/?p=/thenetwork.ova&dl=1)
<div class="panel panel-warning">
<div class="panel-heading">
<h3 class="panel-title">📢 FYI</h3>
......@@ -269,42 +258,25 @@ wget https://drive.mesocentre.uca.fr/d/69e5535b0b88425396d7/files/?p=/thenetwork
### Importer les images OVA
```bash
vboxmanage import kali.ova
vboxmanage import dvwa.ova
vboxmanage import debian.ova
vboxmanage import proxy.ova
vboxmanage import kali.ova
vboxmanage import thenetwork.ova
```
### Configurer le réseau pour chaque vm
```bash
vboxmanage modifyvm kali --nic1 natnetwork --nat-network1 natwebsec
vboxmanage modifyvm dvwa --nic1 natnetwork --nat-network1 natwebsec
vboxmanage modifyvm debian --nic1 natnetwork --nat-network1 natwebsec
vboxmanage modifyvm proxy --nic1 natnetwork --nat-network1 natwebsec
vboxmanage modifyvm kali --nic1 natnetwork --nat-network1 natwebsec
vboxmanage modifyvm thenetwork --nic1 natnetwork --nat-network1 natwebsec
```
![réseau vm](images/etudiants/vm-network.png)
### (optionnel) Mettre en place le port-forwarding sur debian
```bash
vboxmanage natnetwork modify --netname natwebsec --port-forward-4 "ssh:tcp:[127.0.0.1]:1722:[172.16.76.142]:22"
vboxmanage natnetwork modify --netname natwebsec --port-forward-4 "ssh:tcp:[127.0.0.1]:1723:[172.16.76.143]:22"
vboxmanage natnetwork modify --netname natwebsec --port-forward-4 "ssh:tcp:[127.0.0.1]:1724:[172.16.76.144]:22"
vboxmanage natnetwork modify --netname natwebsec --port-forward-4 "ssh:tcp:[127.0.0.1]:1725:[172.16.76.145]:22"
```
### (optionnel) Se connecter en ssh
```bash
ssh -p 1722 mazenovi@127.0.0.1 #thenetwork
ssh -p 1723 mazenovi@127.0.0.1 #proxy
ssh -p 1724 mazenovi@127.0.0.1 #debian
ssh -p 1725 mazenovi@127.0.0.1 #kali
ssh -p 1726 mazenovi@127.0.0.1 #ubuntu server 18.04
```
### (fix) En cas de réseau injoignable sur proxy et thenetwork
si
......@@ -384,20 +356,24 @@ Ce bug est dû à la numérotation fantaisiste d'Ubuntu des interfaces réseau .
```
# SecLab
## thenetwork
172.16.76.142 thenetwork
## proxy
172.16.76.143 proxy secured heart.bleed fo.ol #proxied version of dum.my
172.16.76.144 good.one go.od targ.et
172.16.76.144 mutillid.ae
172.16.76.144 dvwa.com dv.wa
172.16.76.144 d.oc
172.16.76.144 dum.my
172.16.76.144 drup.al hackable-drupal.com drupal
172.16.76.144 wordpre.ss bl.og wp wordpress
172.16.76.144 spip sp.ip
172.16.76.145 bad.guy hack.er 1337.net
# debian
172.16.76.144 debian good.one go.od targ.et mutillid.ae d.oc dum.my spip sp.ip
172.16.76.144 drup.al hackable-drupal.com drupal wordpre.ss bl.og wp wordpress
172.16.76.142 thenetwork
# kali
172.16.76.145 kali bad.guy hack.er 1337.net
# dvwa
172.16.76.146 dvwa dvwa.com dv.wa
# host
172.16.76.1 us.er
```
......
content/slides/1337/md/lab.md
+ 21
1
View file @ a89d9adc
......@@ -5,7 +5,7 @@
### h4PpY H4Ck1nG
## <i class="fa-solid fa-poo-storm"></i> pitch
## <i class="fa-solid fa-poo-storm"></i> pitch V1 😜
* [http://vm-etu-vimazeno.local.isima.fr](http://vm-etu-vimazeno.local.isima.fr)
* la vulnérable
......@@ -15,6 +15,26 @@
* l'attaquante
## <i class="fa-solid fa-poo-storm"></i> pitch V2 🙉
* [http://dvwa](http://dvwa)
* la vulnérable
* [http://kali/exploits](http://kali/exploits)
* la malicieuse
* [kali](https://www.kali.org/)
* l'attaquante
## <i class="fa-solid fa-poo-storm"></i> pitch étendu 😭
* [http://proxy](http://proxy)
* la passerelle percée
* [http://debian](http://debian)
* la mututalisée moisie
* [thenetwork](http://thenetwork)
* la white box
## VirtualBox
[![VirtualBox](images/lab/virtualbox.png)](https://www.virtualbox.org/)
......
vb-import.sh 0 → 100644
+ 10
0
View file @ a89d9adc
vboxmanage import ~/Documents/dvwa.ova
vboxmanage import ~/Documents/kali.ova
vboxmanage import ~/Documents/debian.ova
vboxmanage import ~/Documents/proxy.ova
vboxmanage import ~/Documents/thenetwork.ova
vboxmanage modifyvm kali --nic1 natnetwork --nat-network1 natwebsec
vboxmanage modifyvm dvwa --nic1 natnetwork --nat-network1 natwebsec
vboxmanage modifyvm debian --nic1 natnetwork --nat-network1 natwebsec
vboxmanage modifyvm proxy --nic1 natnetwork --nat-network1 natwebsec
vboxmanage modifyvm thenetwork --nic1 natnetwork --nat-network1 natwebsec
\ No newline at end of file
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment