DVTA

Damn Vulnerable Thick Client Application

DVTA: https://github.com/srini0x00/dvta

  1. SQL Server Express

    1. New Standalone installation

      1. Feature Selection : Database Engine Services

      2. Named Instance : SQLExpress1

      3. SQL Server DB Engine : Account Name = NTAuthority

      4. DB Engine Config (Authentication Mode)= Mixed Mode : Set Password to "p@ssw0rd" , Add Current User to SQL server Administrator

    2. Install sql management studion (if missing) and login using windows auth:

    3. Create new DB : Databases>DVTA.

    4. Run query on DB: Righclick DVTA > New Query > Paste query > Execute 

       CREATE TABLE "users" (
     "id" INT IDENTITY(0,1) NOT NULL,
     "username" VARCHAR(100) NOT NULL,
     "password" VARCHAR(100) NOT NULL,
     "email" VARCHAR(100) NULL DEFAULT NULL,
     "isadmin" INT NULL DEFAULT '0',
     PRIMARY KEY ("id")
 )

    5. Verify: Databases>DVTA>Tables>dbo.users is created. Should have id,username,password,email,isadmin columns.

    6. dbo.users > Select top 1000

    8. Create Expense table.

    9. Refresh DVTA to see if new table created

  2. SQL server Config Manager:

    1. SQL Server Network Configuration> Protocols for SQLExpress1>TCP/IP > Enabled

    2. SQL Server Services > SQL Server (SQLEXPRESS1) > restart.

  3. FileZilla Server install

    1. Start filezilla and connect to port 14147 with password "filezilla"

    2. Create new ftp user:

      1. dvta:filezilla

      2. Mount points: virtual path = / , native path = c:\...\Desktop

  5. DVTA Application first run. https://github.com/srini0x00/dvta

PreviousBlock Cipher Modes

Last updated

Was this helpful?