NWC4123: WebGoat is a deliberately insecure web application maintained by OWASP designed: Ethical Hacking Assignment, UPTM, Malaysia
| University | Universiti Poly-Tech Malaysia (UPTM) |
| Subject | NWC4123 Ethical Hacking Assignment. |
QUESTION 1
WebGoat is a deliberately insecure web application maintained by OWASP designed to teach web application security lessons. You can install and practice with WebGoat. There are other ‘goats’ such as WebGoat for .Net. In each lesson, users must demonstrate their understanding of a security issue by exploiting a real vulnerability in the WebGoat applications.
WebGoat for J2EE is written in Java and therefore installs on any platform with a Java virtual machine. There are installation programs for Linux, OS X Tiger and Windows. Once deployed, the user can go through the lessons and track their progress with the scorecard.
1.0 Instruction for Task 1. : Learning the techniques, network and servers
1. Student are to demonstrate the following task:
a. Injection
b. Broken Authentication
c. Sensitive data Exposure
d. XML External Entities
e. Cross Site Scripting
By using the WebGoat.
2. As for description of each task, student need to rephrase any information, guide or result from the tasks. DO NOT COPY AND PASTE the guideline or instruction given by Web Goat.
3. Summarize your observation and result from each task that you have achieved.
2.0 Instruction for Task 2: Apply the techniques on selected site.
1. Based on the knowledge you have acquired from web goat, student are to pick a web system and apply the knowledge of the attack on the selected web system.
2. Student will select any webpage, or any system deemed insecure. (In order to determine which site is secure, the students will conduct background check on the webpage/system. If the system is suitable, than the student may conduct the suitable tasks for the system/ or webpage.)
3. Upon launching attack, you are required to launch the attack using virtual machine (kali). Do not launch your attack directly from your real machine. Take the necessary action to obscure your IP address. You may apply any technique to mask you IP address (using proxy or changing the IP address range in VM )
4. It is to proposed that some of the attack launch will not be successful due to the technical capabilities of the programmers and fortified layer of security installed on the targeted system. However, the methodologies and problem solving on the task will be heavily mark on. The result will act as the bonus point for the student.
5. The main quality that is being looked upon are the problem solving and the technical knowledge presented throughout the attacking process.
3.0 Requirement
At the end of the assignment, the student is required to write a report for both tasks. The marks will be weighted on the analytical explanation on the problem, solution and the countermeasure proposed. Documented on each problem that you have solved and explain on how the problems are being overcome. Any justification must be backed with relevant references.
Get Help By Expert
Master the art of Ethical Hacking with our expert assistance! As the best assignment helper malaysia, we offer unparalleled support for NWC4123 Ethical Hacking Assignment. Our essay writing service is tailored to meet your academic needs, ensuring excellence in every aspect. With us, Malaysia students can confidently pay our experts to navigate the complexities of ethical hacking and excel in their studies. Trust our expertise to guide you towards academic success!
Recent Solved Questions
- Financial Accounting & Reporting 3 Assignment, SU, Malaysia Foreign subsidiaries financial statements are generally prepared in the local currency of the country it is operates in
- ACW1020: Accounting In Business Assignment, MUM, Malaysia Top Glove Corporation Berhad (TGCB) Is A Leading Rubber Glove Manufacturer
- Strategic Business Project Thesis, UWS, Malaysia By the beginning of 2019, the novel Corona Virus known as COVID-19 began to emerge and spread at a rapid pace around
- Strategic Human Resource Management Assignment, TARC, Malaysia The implications of the global economic crisis have begun to reveal positive lead indicators that this “storm” is pulling through
- EEEB3011: Microprocessor Other, UM, Malaysia One of UNITEN’s Smart Campus initiatives is to implement automated access to engineering laboratories on campus
- Issues in Global Business Essay, TU, Malaysia Why do you think Toyota decided to adapt the existing plant in Melbourne rather than build one from the ground
- Computer Science Assignment, MMU, Malaysia Bradley is attending a 4D3N (4 days and 3 nights) conference in Kuching. He has already paid RM350 for the conference fee
- ITS63504: Human Computer Interaction Assignment, TU, Malaysia You are recently hired by Hilti and are appointed as an International IT Consultant cum UI-UX Designer at Hilti Corporation
- EDC3164: Imagine you are a researcher in your chosen field of study. Your task is to develop a comprehensive: Research Project, SU, Malaysia
- Risk and Hazard Management Assignment, SU, Malaysia Description of the industry or workplace. Evaluation of the possible hazards and risks covering factors such as human errors
