Learn to install OWTF into Kali Linux and run tests against the HacMe site and the scanme site.
- [Instructor] OWASP has developed an automated web testing…framework, which is used to do continuous testing…in accordance with common web testing standards.…We can install this entirely, but the installation…isn't quite as easy as it should be.…You might find libraries don't get properly installed,…and the software isn't as robust as we might like.…Some test may hang, especially with artificial testing…websites, such as HackMe and ScanMe.…Nevertheless, this is likely to be a tool that we we'll see…becoming increasingly robust and useful.…
OWTF is maintained in a Git repository,…so we can clone the OWTF tool.…Okay, this is creating the OWTF folder…and cloning OWTF from GitHub.…Okay, we're cloned now, and I can go into the folder…and install OWTF.…
This takes a while to install, but it's mostly automated.…It will ask for permission to proceed a couple of times.…Okay, we're installed now.…But when I try to run, we see there's…some missing libraries.…We need to manually correct these.…We don't use the suggested pip install command,…
Note: The topics in this course will prepare you for key objectives on the Certified Ethical Hacker exam. Find an overview of the certification and the exam handbook at https://www.eccouncil.org/programs/certified-ethical-hacker-ceh/.
- Dissecting HTTP/HTTPS protocol
- Working with WebSockets
- Understanding cookies
- Installing testing tools such as Hacme Casino and the Vega Scanner
- Running web application tests
- Practicing your skills