Skip to content

A vulnerable web app made for Apache2 and PHP7.2

Notifications You must be signed in to change notification settings

Sevaarcen/SocialBook

Repository files navigation

SocialBook

The vulnerable Web App for Penetration Test simulations

Warning

This application is vulnerable, do NOT make it internet facing! This is meant for internal use only, preferably on a virtual machine. You assume full responsibility for any consequences that result from using this software.

Installation

Requires a Linux OS, preferably Ubuntu 18.04 LTS. Tested to work on Kali Linux (Debian 9)

Run the following commands to install the pre-requisites and setup SocialBook on your machine. These commands may need to be changed depending on your operating system.

sudo mkdir /var/www/html
cd /var/www/html
sudo rm -rf *
sudo git clone https://github.com/Sevaarcen/SocialBook.git /var/www/html
sudo bash ./setup/install.sh

NOTE: As long as you don't remove the .git directory, the install script can be rerun to reset SocialBook.

One it's installed, you can create a new account using false information or use the admin account below.

Default admin credentials
Username: admin
Password: c0nn3ction$

Requirements

Please refer to the Installation section. If installing from the script, no need to install the requirements beforehand.

  • Linux OS (Ubuntu 18.04 LTS recommended)
  • Apache2 (tested on version 2.4.29-1ubuntu4.5)
  • php7.X with mysqli (tested on php7.2 and php7.3)
  • mariadb (tested on version 10.3.12)

Troubleshooting

  • I already have MySQL/MariaDB installed
    • Uninstall it, if you already have MariaDB installed make sure to shut it down beforehand. Use the command below to shut down the MariaDB server
    • mysqladmin -u root -p shutdown
  • I'm unable to install the packages on Kali

If your issue isn't listed, please open a new issue on GitHub

About

A vulnerable web app made for Apache2 and PHP7.2

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published