Sandbox-Based Real-Time Cyber Attack Simulation and Analysis
摘要
This study is all about checking out web app vulnerabilities using the Damn Vulnerable Web Application (DVWA) platform, and it’s done through ethical hacking in a sandbox environment. We ran three big attacks to spot system flaws and figure out some workarounds: SQL Injection, Cross-Site Scripting (XSS), and Brute Force. The research involved checking for vulnerabilities and the prevention of the same by considering the types of security setups. Tools that were used were Burp Suite, SQL map, and Tamper Data, among others. It was understood here that one smart security measure - to bring down a successful degree in attacks - is the use of CAPTCHA, Web Application Firewalls, and Content Security Policies. This practice truly focuses on ethical hacking as an efficient tool to inform developers of real risks and aid them in acquiring the skills needed to construct robust defenses against potential attacks. The paper is a comprehensive guide on how to evaluate, understand, and improve web application security.