Kali安装sqlilabs靶场
1、安装VMware
链接:https://pan.baidu.com/s/1fHC12zvF-qW6nsz8UIwdJQ
提取码:31mg
2、下载kali镜像并安装
链接:https://pan.baidu.com/s/1lATSRB_yFiSu2I4-E68HzA
提取码:v0yh
3、配置kali源
#cd /etc/apt
#vi sources.list
加入以下国内源
#中科大
deb http://mirrors.ustc.edu.cn/kali kali-rolling main non-free contrib
deb-src http://mirrors.ustc.edu.cn/kali kali-rolling main non-free contrib
#阿里云
deb http://mirrors.aliyun.com/kali kali-rolling main non-free contrib
deb-src http://mirrors.aliyun.com/kali kali-rolling main non-free contrib
#清华大学
deb http://mirrors.tuna.tsinghua.edu.cn/kali kali-rolling main contrib non-free
deb-src https://mirrors.tuna.tsinghua.edu.cn/kali kali-rolling main contrib non-free
4、安装靶场
下载sqlilabs
# cd /var/www/html/
# git clone https://github.com/mukkul007/sqli-labs-kali2.git
添加数据库信息
# service mysql start
# mysql -uroot
MariaDB [(none)]> grant all on dvwa.* to root@localhost identified by '123456';
MariaDB [(none)]> flush privileges;
# vi /var/www/html/sqli-labs-kali2/sql-connections/db-creds.inc
启动服务
注意:每次使用sqlilabs都需要开启这两个服务
# service apache2 start
# service mysql start
注意:kali虚拟机里面火狐浏览器输入http会自动跳转到https,需要做以下设置
火狐地址栏 about:config
browser.fixup.fallback-to-https
true—改false
浏览器访问以下网址
http://127.0.0.1/sqli-labs-kali2/
5、windows浏览器上访问kali靶场
查看kali服务器的ip
# ifconfig
windows上ping kali的ip
在访问之前要关闭kali的防火墙,不然外面的windows访问不到
先安装ufw
# apt-get install ufw
如果报以下错误,是因为要更新apt-get
Reading package lists… Done
Building dependency tree… Done
Package aptitude is not available, but is referred to by another package.
This may mean that the package is missing, has been obsoleted, or is only available from another source
Package ‘ufw’ has no installation candidate
更新apt-get
# apt-get update
再重新安装
关闭防火墙
# ufw disable
浏览器访问 http://192.168.59.129/sqli-labs-kali2/
接下来就可以在电脑上开始你的靶场之旅了~
文末送上sqlilabs过关手册:
链接:https://pan.baidu.com/s/1N5r1yBveLVbeAt2JpQYkkQ
提取码:cdzq