Pages

6/25/2012

Labs for Practice Penetration Testing

I found this page, it has a pretty good mind-map listing all available labs to practice your skill in doing penetration testing.
The link is http://www.amanhardikar.com/mindmaps/PracticewithURLs.html

full image size please go to the original website

Vulnerable Web Applications [36 unique web applications]

  • OWASP BWA http://code.google.com/p/owaspbwa/
  • OWASP Hackademic http://hackademic1.teilar.gr/
  • Butterfly Security Project http://thebutterflytmp.sourceforge.net/
  • Foundstone Hackme Bank http://www.mcafee.com/us/downloads/free-tools/hacme-bank.aspx
  • Foundstone Hackme Books http://www.mcafee.com/us/downloads/free-tools/hacmebooks.aspx
  • Foundstone Hackme Casino http://www.mcafee.com/us/downloads/free-tools/hacme-casino.aspx
  • Foundstone Hackme Shipping http://www.mcafee.com/us/downloads/free-tools/hacmeshipping.aspx
  • Foundstone Hackme Travel http://www.mcafee.com/us/downloads/free-tools/hacmetravel.aspx
  • LAMPSecurity http://sourceforge.net/projects/lampsecurity/
  • Moth http://www.bonsai-sec.com/en/research/moth.php
  • WackoPicko https://github.com/adamdoupe/WackoPicko
  • BadStore http://www.badstore.net/
  • WebSecurity Dojo http://www.mavensecurity.com/web_security_dojo/
  • BodgeIt Store http://code.google.com/p/bodgeit/
  • hackxor http://hackxor.sourceforge.net/cgi-bin/index.pl
  • SecuriBench http://suif.stanford.edu/~livshits/securibench/
  • SQLol https://github.com/SpiderLabs/SQLol

Vulnerable Operating System Installations [16+ unique OS setups]

  • Damn Vulnerable Linux http://sourceforge.net/projects/virtualhacking/files/os/dvl/
  • Metasploitable v1 http://www.metasploit.com/learn-more/how-do-i-use-it/test-lab.jsp
  • Metasploitable v2 https://community.rapid7.com/docs/DOC-1875
  • LAMPSecurity http://sourceforge.net/projects/lampsecurity/
  • UltimateLAMP http://ronaldbradford.com/tmp/UltimateLAMP-0.2.zip
  • De-ICE, hackerdemia, pWnOS http://forums.heorot.net/
  • Holynix http://pynstrom.net/holynix.php
  • Kioptrix http://www.kioptrix.com/
  • CentOS http://www.centos.org/

Sites for Downloading Older Versions of Various Software [3 sources]

  • Old Apps http://www.oldapps.com/
  • Old Version http://www.oldversion.com/
  • Exploit-DB http://www.exploit-db.com/

Sites by Vendors of Security Testing Software [8 unique sites]

  • Acunetix acuforum http://testasp.vulnweb.com/
  • Acunetix acublog http://testaspnet.vulnweb.com/
  • Acunetix acuart http://testphp.vulnweb.com/
  • Cenzic crackmebank http://crackme.cenzic.com
  • HP freebank http://zero.webappsecurity.com
  • IBM altoromutual http://demo.testfire.net/
  • Mavituna testsparker http://aspnet.testsparker.com
  • Mavituna testsparker http://php.testsparker.com

Sites for Improving Your Hacking Skills [16 unique sites]

  • Google Gruyere http://google-gruyere.appspot.com/
  • Hack This Site http://www.hackthissite.org/
  • Hacker Challenge http://www.dareyourmind.net/
  • HackQuest http://www.hackquest.com/
  • Hax.Tor http://hax.tor.hu/
  • Hacker Test http://www.hackertest.net/
  • OverTheWire http://www.overthewire.org/wargames/
  • Root Me http://www.root-me.org/?lang=en
  • Smash The Stack http://www.smashthestack.org/
  • TheBlackSheep and Erik http://www.bright-shadows.net/
  • ThisIsLegal             http://thisislegal.com/
  • Try2Hack                http://www.try2hack.nl/
  • EnigmaGroup             http://www.enigmagroup.org/
  • hACME Game              http://www.hacmegame.org/
  • Exploit Exercises       http://exploit-exercises.com/
  • Hacking-Lab             https://www.hacking-lab.com


No comments:

Post a Comment