ISSC457_Lab2_Miller_John

docx

School

American Military University *

*We aren’t endorsed by this school

Course

457

Subject

Information Systems

Date

Jan 9, 2024

Type

docx

Pages

9

Uploaded by MajorField11399

Report
ISSC457 Week 3 Lab 2 Name: __John Miller________________ Date: __23 Dec 23___________ Fill in your name above, put your full response below the question, save the file using the file naming convention: “ ISSC455_Lab2_LastName_FirstName.doc ” where LastName is your last name and FirstName is your first name, then return this document for grading Hardware/Software Setup Required Paros version 3.2.13 (available at http://sourceforge.net/projects/paros/ Problem Description Paros Proxy allows you to scan for Web sites vulnerabilities. An administrator can use it to detect security problems on his or her own Web site and fix them before an attacker exploits them. In this lab, you will learn how to use Paros Proxy to scan for Web site vulnerabilities. Estimated completion time: 60 minutes. Outcome Report the steps for performing the task above. Validation/Evaluation Add a Web site to Paros Scan for vulnerabilities to a cached Web site with Paros I started by downloading and installing Paros from http://sourceforge.net/projects/paros/. ➢ I navigated to Google Chrome's settings by clicking the “Customize and Control Google Chrome” option. ➢ After that, I slid to the bottom, selected "Show Advanced Settings," and then proceeded to "Network." ➢ I selected "LAN Settings" after selecting "Change Proxy Settings." ➢ I checked the box in the proxy server area that said, "Use a Proxy Server for your LAN." ➢ I entered "localhost" in "Address" and "8080" in "Port" before clicking "OK." ➢ Proceeding, I entered the website https://www.petsathome.com/ and hit Enter. I selected the petsathome option from the "sites" page in Paros, after which I selected the "Analyze" and "Scan" choices. ➢ The "Alerts" folder in the Paros bottom box contains vulnerability notifications that have been found on the internet.
ISSC457 Week 3 Lab 2 ➢ Finally, I selected “Last Scan Report” from the “Report” menu by scrolling down.
ISSC457 Week 3 Lab 2 Lab Solution 1. Download Paros Proxy from http://www.parosproxy.org/index.shtml and install it on your computer. 2. Run Paros Proxy. 3. Paros can scan for vulnerabilities only for cached Web sites. So, the first thing to do is to cache Web sites with Paros. To cache a Web site, you need to open it with your preferred Web browser. Before that, you need to change the proxy settings for your Web browser. 4. Open your Web browser. Note: For this exercise, we will use Google Chrome as our Web browser.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
  • Access to all documents
  • Unlimited textbook solutions
  • 24/7 expert homework help
ISSC457 Week 3 Lab 2 5. Click on the “Customize and control Google Chrome” button and select Options to change the proxy setting. 6. Next, select the “Under the Hood” tab and scroll down to the Network section.
ISSC457 Week 3 Lab 2 7. Click on the “Change proxy settings” to open the Internet Properties window. On that window, click on “LAN settings.” 8. Then, mark the option “Use a proxy server for your LAN.” Type localhost on the Address field and 8080 on the Port field. Click OK.
ISSC457 Week 3 Lab 2 9. Click OK again. 10. Click Close to return to the Web browser.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
  • Access to all documents
  • Unlimited textbook solutions
  • 24/7 expert homework help
ISSC457 Week 3 Lab 2 11. Now, visit the Web site you want to scan as you would normally do it with your browser. For example, if you want to scan your company’s Web site, type its corresponding URL www.mycompany.com in your Web browser to open it. Paros will automatically cache it. Note: Scanning should be done in safe environment.
ISSC457 Week 3 Lab 2 12. Now, to start scanning the site for common vulnerabilities, select the site from the Sites list on the left panel. Then, go to Analyse -> Scan. Paros will automatically start scanning your Web site. 13. Wait until Paros finishes scanning your site. Click OK to close the following dialog window. 14. Go to the Alerts tab on the bottom panel to view all the security problems Paros found for www.mycompany.com .
ISSC457 Week 3 Lab 2 15. At this point, you should try to fix all the issues listed and make your Web site stronger. 16. Change back the proxy configuration on your Web browser. 17. Close all windows.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
  • Access to all documents
  • Unlimited textbook solutions
  • 24/7 expert homework help

Related Documents

L3 A2.pdf
Module 3 Lesson 3.pdf
Module 4 Lesson 1.pdf
Module 3 Lesson 2.pdf
CYB302week4Assignment.docx
Working in EC Word Doc.docx
ISSC457_Week2_Assignment_Miller_John.docx
Miller_John_Assignment #3.docx
Miller_Assignment #1.docx
ISSC457_Week3_Assignment_Miller_John.docx
SOCIO_partImage.docx
STAT_lastSchedule.docx