I found this page, it has a pretty good mind-map listing all available labs to practice your skill in doing penetration testing.
Vulnerable Web Applications [36 unique web applications]
OWASP BWA http://code.google.com/p/owaspbwa/
OWASP Hackademic http://hackademic1.teilar.gr/
Butterfly Security Project http://thebutterflytmp.sourceforge.net/
Foundstone Hackme Bank http://www.mcafee.com/us/downloads/free-tools/hacme-bank.aspx
Foundstone Hackme Books http://www.mcafee.com/us/downloads/free-tools/hacmebooks.aspx
Foundstone Hackme Casino http://www.mcafee.com/us/downloads/free-tools/hacme-casino.aspx
Foundstone Hackme Shipping http://www.mcafee.com/us/downloads/free-tools/hacmeshipping.aspx
Foundstone Hackme Travel http://www.mcafee.com/us/downloads/free-tools/hacmetravel.aspx
LAMPSecurity http://sourceforge.net/projects/lampsecurity/
Moth http://www.bonsai-sec.com/en/research/moth.php
WackoPicko https://github.com/adamdoupe/WackoPicko
BadStore http://www.badstore.net/
WebSecurity Dojo http://www.mavensecurity.com/web_security_dojo/
BodgeIt Store http://code.google.com/p/bodgeit/
hackxor http://hackxor.sourceforge.net/cgi-bin/index.pl
SecuriBench http://suif.stanford.edu/~livshits/securibench/
SQLol https://github.com/SpiderLabs/SQLol
Vulnerable Operating System Installations [16+ unique OS setups]
Damn Vulnerable Linux http://sourceforge.net/projects/virtualhacking/files/os/dvl/
Metasploitable v1 http://www.metasploit.com/learn-more/how-do-i-use-it/test-lab.jsp
Metasploitable v2 https://community.rapid7.com/docs/DOC-1875
LAMPSecurity http://sourceforge.net/projects/lampsecurity/
UltimateLAMP http://ronaldbradford.com/tmp/UltimateLAMP-0.2.zip
De-ICE, hackerdemia, pWnOS http://forums.heorot.net/
Holynix http://pynstrom.net/holynix.php
Kioptrix http://www.kioptrix.com/
CentOS http://www.centos.org/
Sites for Downloading Older Versions of Various Software [3 sources]
Old Apps http://www.oldapps.com/
Old Version http://www.oldversion.com/
Exploit-DB http://www.exploit-db.com/
Sites by Vendors of Security Testing Software [8 unique sites]
- Acunetix acuforum http://testasp.vulnweb.com/
- Acunetix acublog http://testaspnet.vulnweb.com/
- Acunetix acuart http://testphp.vulnweb.com/
- Cenzic crackmebank http://crackme.cenzic.com
- HP freebank http://zero.webappsecurity.com
- IBM altoromutual http://demo.testfire.net/
- Mavituna testsparker http://aspnet.testsparker.com
- Mavituna testsparker http://php.testsparker.com
Sites for Improving Your Hacking Skills [16 unique sites]
- Google Gruyere http://google-gruyere.appspot.com/
- Hack This Site http://www.hackthissite.org/
- Hacker Challenge http://www.dareyourmind.net/
- HackQuest http://www.hackquest.com/
- Hax.Tor http://hax.tor.hu/
- Hacker Test http://www.hackertest.net/
- OverTheWire http://www.overthewire.org/wargames/
- Root Me http://www.root-me.org/?lang=en
- Smash The Stack http://www.smashthestack.org/
- TheBlackSheep and Erik http://www.bright-shadows.net/
- ThisIsLegal http://thisislegal.com/
- Try2Hack http://www.try2hack.nl/
- EnigmaGroup http://www.enigmagroup.org/
- hACME Game http://www.hacmegame.org/
- Exploit Exercises http://exploit-exercises.com/
- Hacking-Lab https://www.hacking-lab.com
The link is http://www.amanhardikar.com/mindmaps/PracticewithURLs.html
OffensiveSec Blog
0 comentários:
Post a Comment
Note: Only a member of this blog may post a comment.