Persecure : my learning archive

DVWA Command Execution

Insert the victim machine IP ; pwd to check for vulnerability.

Shows the current directory

Insert the victim machine IP ; cat /etc/passwd to check for users.

List of users

Medium Security

In viewing the source code we can see that the ‘&&’ and ‘;’ characters are block.

Let’s replace these characters with a ‘ | ‘.

Insert the victim machine IP | cat /etc/passwd to check for users.

High

*To be updated*

Create a website or blog at WordPress.com