O'Reilly logo

Instant Penetration Testing: Setting Up a Test Lab How-to by Vyacheslav Fadyushin

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Setting up a web app lab (Should know)

This section is aimed at setting up a lab environment for practising web application penetration testing. You can practise the following skills using this type of a lab:

  • Essential skills
    • Enumeration techniques
    • Scanning techniques
    • OWASP TOP 10 vulnerabilities discovery and exploitation
    • Privilege escalation
  • Additional skills
    • Fuzzing
    • Vulnerability research
    • Documenting the penetration testing process

Getting ready

At first, we have to determine the web app lab topology and architecture. In this recipe, we will use only components essential for web app penetration testing and will not include others. The following lab components are necessary for our current task:

  • Router
  • Web server
  • Victim web client workstation
  • Attacker workstation ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required