![Page 1: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/1.jpg)
EC521: Cybersecurity OpenVAS
Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang;
Igibek Koishybayev;
1
OpenVAS Vulnerability Test
![Page 2: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/2.jpg)
EC521: Cybersecurity OpenVAS
Agenda
• What we have done?• How OpenVAS work?• Mailbox• Browser• Web application with XSS vulnerabilities• What to do next…
2
![Page 3: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/3.jpg)
EC521: Cybersecurity OpenVAS
What we have done?• We were divided into 4 parts and each in charge of
web server, web application, mailbox, and web browser.• learning the basic protocols that running on the
contemporary Internet(basic knowledge charging)• Research (a lot of reading): –OpenVAS – documentation–How to setup and run the OpenVAS–Understanding the vulnerability of Mailbox
• Coding–Web Application–Writing scripts
3
![Page 4: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/4.jpg)
What we have done?
• Build up the working environment• Kali linux OS(set up on virtual machine)• install openVAS in Kali linux
• Find and study(then maybe audit) open source files to set up our targets(i.e. mailbox etc.)
• Use openVAS to give initial test scan to these targets
• Then figure out how we can utilize these vulnerability
4
![Page 5: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/5.jpg)
EC521: Cybersecurity OpenVAS
DEMO - OpenVAS
5
![Page 6: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/6.jpg)
OpenVAS
• Source Packages Installation
• NVT sync, Add admin/user• GSA: https://localhost:9392/
![Page 7: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/7.jpg)
![Page 8: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/8.jpg)
EC521: Cybersecurity OpenVAS8
![Page 9: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/9.jpg)
EC521: Cybersecurity OpenVAS9
![Page 10: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/10.jpg)
EC521: Cybersecurity OpenVAS10
![Page 11: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/11.jpg)
EC521: Cybersecurity OpenVAS11
![Page 12: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/12.jpg)
EC521: Cybersecurity OpenVAS12
![Page 13: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/13.jpg)
EC521: Cybersecurity OpenVAS13
![Page 14: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/14.jpg)
EC521: Cybersecurity OpenVAS14
Target – Xampp/DVWA
![Page 15: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/15.jpg)
EC521: Cybersecurity OpenVAS15
XAMPP's name is an acronym for:
• X (to be read as "cross", meaning cross-platform)• Apache HTTP Server• MySQL• PHP• Perl
xampp
![Page 16: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/16.jpg)
DVWA
• Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment.
EC521: Cybersecurity OpenVAS16
![Page 17: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/17.jpg)
EC521: Cybersecurity OpenVAS17
![Page 18: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/18.jpg)
EC521: Cybersecurity OpenVAS18
![Page 19: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/19.jpg)
EC521: Cybersecurity OpenVAS19
![Page 20: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/20.jpg)
EC521: Cybersecurity OpenVAS20
![Page 21: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/21.jpg)
EC521: Cybersecurity OpenVAS21
Webmail Vulnerability
![Page 22: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/22.jpg)
EC521: Cybersecurity OpenVAS
Webmail vulnerability
Mail Server Set-Up Environment (Local)• OS : CentOS-6.5• SMTP : Postfix-2.6 + Sasl• IMAP/POP3 : Dovecot-2.0• Web : Apache-2.2• Webmail : Openwebmail-2.30 (perl)/
Squirrelmail-1.4.22 (php)
22
![Page 23: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/23.jpg)
EC521: Cybersecurity OpenVAS
Webmail vulnerability
Postfix• Configure : main.cf• Enable Sasl : smtpd_sasl_auth_enable = yes
Dovecot• Protocol = pop3(port: 110)
imap(port: 143)• Netstat –tulpn | grep dovecot
23
![Page 24: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/24.jpg)
EC521: Cybersecurity OpenVAS
Webmail vulnerability
Openwebmail • http://www.openwebmail.org/• Online Demo http://openwebmail.amcpl.net/
• Install openwebmail-2.30.tar.gz
24
![Page 25: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/25.jpg)
EC521: Cybersecurity OpenVAS
Openwebmail Vulnerbilities
25
![Page 26: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/26.jpg)
EC521: Cybersecurity OpenVAS
Openwebmail Ver. 2.30
26
![Page 27: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/27.jpg)
EC521: Cybersecurity OpenVAS
Webmail vulnerability
Apache • Httpd config : /etc/httpd/conf/httpd.conf
set directory• Serv. restart : /etc/init.d/httpd restart
• localhost/cgi-bin/openwebmail/openwebmail.pl
27
![Page 28: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/28.jpg)
EC521: Cybersecurity OpenVAS28
![Page 29: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/29.jpg)
EC521: Cybersecurity OpenVAS29
![Page 30: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/30.jpg)
EC521: Cybersecurity OpenVAS30
![Page 31: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/31.jpg)
EC521: Cybersecurity OpenVAS31
First Try
![Page 32: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/32.jpg)
EC521: Cybersecurity OpenVAS
Webmail vulnerability
Next…• Keep digging vulnerabilities (Maybe elder ver.)• Patches & Penetration (Burpsuite)• Localhost =>LAN
32
![Page 33: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/33.jpg)
EC521: Cybersecurity OpenVAS33
Web Application (Blackboard)
![Page 34: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/34.jpg)
EC521: Cybersecurity OpenVAS
DEMO: Web Application (Blackboard)
Description: Blackboard is the web application used by students to post their homework solutions, which vulnerable to XSS and CSRF attack.
34
![Page 35: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/35.jpg)
EC521: Cybersecurity OpenVAS
DEMO: Web Application (Blackboard)
Story on behalf: You (hacker) don’t know solution to the homework and want to steal the solutions from others. Also you want to steal final exam questions from teacher in a such way that no one will find out that it was you. (i.e. like a ninja)
35
![Page 36: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/36.jpg)
EC521: Cybersecurity OpenVAS
DEMO: Web Application (Blackboard)
Mission: 1. Steal the solutions from “nerd”;2. Make “badguy” to steal final exam q/a for
you;3. Be the smartest guy (ninja, hacker) in the
class;
36
![Page 37: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/37.jpg)
EC521: Cybersecurity OpenVAS
DEMO: Web Application (Blackboard)
Wait a minute…where is OpenVAS???
We will make security assessment on our web application using OpenVAS. (in near future)
37
![Page 38: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/38.jpg)
EC521: Cybersecurity OpenVAS
What to do next…
• Write plugins– OpenVAS
• Integrate everything• Modify the php code in DVWA, do the openvas scan
again, compare the report • Local => LAN; Penetration (Burpsuite) and Patches
38
![Page 39: EC521: Cybersecurity OpenVAS Team Members: Yingchao Zhu; Chen Qian; Xingyu Wu; XuZhuo Zhang; Igibek Koishybayev; 1 OpenVAS Vulnerability Test](https://reader035.vdocument.in/reader035/viewer/2022062314/56649f165503460f94c2c9cd/html5/thumbnails/39.jpg)
EC521: Cybersecurity OpenVAS
Questions?
39