Lab scenario to test some website common attacks, such as CSRF (Cross-Site Request Forgery) and XSS (Cross-site scripting). To test the CSRF attack we created 2 websites, the good guy, that is a simple registration, login and update, and the bad guy website, that will try to change the information while the session is still valid.
This lab was created for the LACTLD 2017 technical workshop at Costa Rica.
Download the project with the following command:
go get -u github.com/rafaeljusto/vulnerable/...
Make sure that your $GOPATH/bin is in your $PATH environment. The just run
the commands:
goodguy -port 8080
badguy -port 8081 -attack-server localhost:8080
-
Go to the Good Guy website (
http://localhost:8080), register a new account and login into the system. -
Check registered name in Good Guy's search page (
http://localhost:8080/search) to see the currently name of the registered user. -
With your session still valid in the Good Guy website, access the Bad Guy website (
http://localhost:8081) to get your account hijacked. -
Go back to the Good Guy's search page (
http://localhost:8080/search) to check that your account name was changed. Also, if you logout and try to login again it will failed, because the password was changed.