ISSC457_Lab2_Miller_John
.docx
keyboard_arrow_up
School
American Military University *
*We aren’t endorsed by this school
Course
457
Subject
Information Systems
Date
Jan 9, 2024
Type
docx
Pages
9
Uploaded by MajorField11399
ISSC457
Week 3 Lab 2
Name: __John Miller________________
Date: __23 Dec 23___________
Fill in your name above, put your full response below the question, save the file using the file naming convention: “
ISSC455_Lab2_LastName_FirstName.doc
” where LastName is your last name and FirstName is your first name, then return this document for grading
Hardware/Software Setup Required
Paros version 3.2.13 (available at http://sourceforge.net/projects/paros/
Problem Description
Paros Proxy allows you to scan for Web sites vulnerabilities. An administrator can use it to detect security problems on his or her own Web site and fix them before an attacker exploits
them.
In this lab, you will learn how to use Paros Proxy to scan for Web site vulnerabilities.
Estimated completion time: 60 minutes.
Outcome
Report the steps for performing the task above.
Validation/Evaluation
●
Add a Web site to Paros
●
Scan for vulnerabilities to a cached Web site with Paros
I started by downloading and installing Paros from http://sourceforge.net/projects/paros/.
➢ I navigated to Google Chrome's settings by clicking the “Customize and Control Google Chrome” option.
➢ After that, I slid to the bottom, selected "Show Advanced Settings," and then proceeded to "Network."
➢ I selected "LAN Settings" after selecting "Change Proxy Settings."
➢ I checked the box in the proxy server area that said, "Use a Proxy Server for your LAN."
➢ I entered "localhost" in "Address" and "8080" in "Port" before clicking "OK."
➢ Proceeding, I entered the website https://www.petsathome.com/ and hit Enter.
I selected the petsathome option from the "sites" page in Paros, after which I selected the "Analyze" and "Scan" choices.
➢ The "Alerts" folder in the Paros bottom box contains vulnerability notifications that have been found on the internet.
ISSC457
Week 3 Lab 2
➢ Finally, I selected “Last Scan Report” from the “Report” menu by scrolling down.
ISSC457
Week 3 Lab 2
Lab Solution
1.
Download Paros Proxy from http://www.parosproxy.org/index.shtml
and install it on your computer.
2.
Run Paros Proxy.
3.
Paros can scan for vulnerabilities only for cached Web sites. So, the first thing to do is to cache Web sites with Paros. To cache a Web site, you need to open it with your preferred Web browser. Before that, you need to change the proxy settings for your Web browser. 4.
Open your Web browser. Note: For this exercise, we will use Google Chrome as our Web
browser.
ISSC457
Week 3 Lab 2
5.
Click on the “Customize and control Google Chrome” button and select Options to change the proxy setting.
6.
Next, select the “Under the Hood” tab and scroll down to the Network section.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
- Access to all documents
- Unlimited textbook solutions
- 24/7 expert homework help