安装DVWA
下载解压软件
yum install unzip -y
解压靶场源码
unzip DVWA-master.zip
关闭firewalld
systemctl stop firewalld
下载dvwa
Wget https://github.com/digininja/DVWA/archive/master.zip
下载靶场环境
yum install php php-mysql php-gd httpd mariadb mariadb-server -y
下载解压软件
yum install unzip -y
解压靶场源码
unzip DVWA-master.zip
开机启动
systemctl start mariadb
systemctl start httpd
systemctl enable mariadb
systemctl enable httpd
移动到/var/www/html/
mv DVWA-master.zip /var/www/html/
解压靶场源码
unzip DVWA-master.zip
数据库的配置
mysqladmin -u root password ‘passwd’
验证
mysql -u root -p
>passwd
退出
>exit
移动到apache根目录下和改所有权
mv DVWA-master /var/www/html
chown -R apache:apache /var/www/html/*
配置DVWA
cd /var/www/html/DVWA-master/config/
cp config.inc.php.dist config.inc.php
vim config.inc.php
修改前 |
$_DVWA = array(); $_DVWA[ 'db_server' ] = '127.0.0.1'; $_DVWA[ 'db_database' ] = 'dvwa'; $_DVWA[ 'db_user' ] = 'dvwa'; $_DVWA[ 'db_password' ] = 'p@ssw0rd'; $_DVWA[ 'db_port'] = '3306'; |
修改后 |
$_DVWA = array(); $_DVWA[ 'db_server' ] = '127.0.0.1'; $_DVWA[ 'db_database' ] = 'dvwa'; $_DVWA[ 'db_user' ] = 'root'; $_DVWA[ 'db_password' ] = 'passwd'; $_DVWA[ 'db_port'] = '3306'; |
配置php.ini
vim /etc/php.ini
修改前 |
allow_url_include = Off |
修改后 |
allow_url_include = on |
重启服务
systemctl restart httpd
ReCAPTCHA settings
配置config.inc.php
vim /var/www/html/DVWA-master/config/config.inc.php
修改前 |
$_DVWA[ 'recaptcha_public_key' ] = ''; $_DVWA[ 'recaptcha_private_key' ] = ''; |
修改后 |
$_DVWA[ 'recaptcha_public_key' ] = '6LdJJIUUAAAAAH1Q6cTpZRQ2Ah8VpyzhnffD0m8b '; $_DVWA[ 'recaptcha_private_key' ] = '6LdJJIUUAAAAAM2a3HrgzLczqdYp4g05eqDs-W4k '; |
访问
IP/DVWA-master/setup.php