Viewing 8 posts - 1 through 8 (of 8 total)
  • Author
    Posts
  • May 26, 2024 at 5:03 am #153898
    mungar
    Participant

    Well right after I registered cloned Facebook site to purchased domain site mikeungar.com, I got below message, so took down the cloned index.hmtl page. So I can continue with the exercises, is there an index.html and login.php you can share, perhaps a privately used site used for training, that I can update my var/www/html directory for

    Hello,

    We’ve received a report(s) that your AWS resource(s)

    AWS ID: 891376973357 Region: us-east-2 EC2 Instance Id: i-01714841336e61330
    AWS ID: 891376973357 Region: us-east-2 Network Interface Id: eni-0094b93dceb05004e

    has been implicated in hosting content that resembles a phishing website. Hosting a phishing website is forbidden in the AWS Acceptable Use Policy (https://aws.amazon.com/aup/). We’ve included the original report below for your review.

    Please take action to remove the reported content and reply directly to this email with details of the corrective actions you have taken. If you do not consider the activity described in these reports to be abusive, please reply to this email with details of your use case.

    May 27, 2024 at 6:33 pm #154443
    mungar
    Participant

    Disregard, I see gman asked same question and continued thread there

    May 27, 2024 at 9:35 pm #154496
    Diego PérezDiego Pérez
    Moderator

    Hi!
    Yes, I already answered you there but let’s keep the topic her instead. Use http://testphp.vulnweb.com/login.php to practice.

    Greetings!
    Diego

    May 28, 2024 at 1:54 am #154499
    mungar
    Participant

    sorry, posted to other by mistake on using same login.php (other than header for forwarding is not facebook.com) to continue exercise

    May 28, 2024 at 9:45 pm #154835
    Diego PérezDiego Pérez
    Moderator

    Hi!
    Yes, use the same procedure as with facebook, make sure that you are using the correct name of the inputs in the login.php you created. And yes, the Location header would need to be changed as well to correspond the hijacked site.

    Greetings!
    Diego

    June 10, 2024 at 12:09 am #158682
    mungar
    Participant

    ok used suggested site, but data file not capturing the username password, please check against login.php file, link below, thanks

    https://drive.google.com/file/d/1p61NaHSVK8lANCmSrUBpi11d-Nx8yx9_/view?usp=sharing

    June 10, 2024 at 12:17 am #158684
    mungar
    Participant

    site html loaded to site at

    https://drive.google.com/file/d/1tRautWngyTeBSHTNOePbyUZnT3cR03X9/view?usp=sharing

    June 10, 2024 at 9:14 pm #158973
    Diego PérezDiego Pérez
    Moderator

    Hi!
    As mentioned in the lecture you need to make sure that the name of the input tag corresponds with the name used in the php file you created, also make sure to set the action in the form field to the correct php file. Then try it again.

    Greetings!
    Diego

  • Author
    Posts
Viewing 8 posts - 1 through 8 (of 8 total)
  • You must be logged in to reply to this topic.