Scribd
Upload
356 views

DVWS Installation

To install the DVWS vulnerability on an existing DVWA installation: 1. Download and decompress the DVWS source code file 2. Move the decompressed "webservices" directory to the DVWA "vulnerabilities" directory 3. Access the new DVWS vulnerabilities by visiting the URL http://[dvwa_ip]/vulnerabilities/webservices/ or by adding new menu items to the DVWA interface.

Uploaded by

Manu Zacharia
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as PDF, TXT or read online on Scribd
356 views

DVWS Installation

To install the DVWS vulnerability on an existing DVWA installation: 1. Download and decompress the DVWS source code file 2. Move the decompressed "webservices" directory to the DVWA "vulnerabilities" directory 3. Access the new DVWS vulnerabilities by visiting the URL http://[dvwa_ip]/vulnerabilities/webservices/ or by adding new menu items to the DVWA interface.

Uploaded by

Manu Zacharia
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 1

DVWS Installation: (requires a working version of DVWA 1.0.7) 1. Download the DVWS source code from http://dvws.secureideas.net/downloads/files/dvws.tgz. 2.

Decompress dvws.tgz. This should create a webservices directory. tar zxvf dvws.tgz 3. Move the webservices directory to the DVWA vulnerabilities directory. DVWA Live CD: mv webservices/ /opt/lamp/htdocs/vulnerabilities/ 4. You can now access the webservices portion of DVWA by manually visiting the following url, or manually add the web service menu items (instructions below). http://[dvwa_ip]/vulnerabilities/webservices/ Add web service menu items: 1. Add the following lines to the dvwaHtmlEcho function in dvwa/includes/dvwaPage.inc.php. a. $menuBlocks['vulnerabilities'][] = array( 'id' => 'websvc_exec', 'name' => 'Web Service Command Execution', 'url' => 'vulnerabilities/webservices/exec/.' ); b. $menuBlocks['vulnerabilities'][] = array( 'id' => 'websvc_sqli', 'name' => 'Web Service SQL Injection', 'url' => 'vulnerabilities/webservices/sqli/.' ); Enjoy!

You might also like