Switch branches/tags
Nothing to show
Find file History
Pull request Compare This branch is 5 commits ahead, 5 commits behind CySCA:master.
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Failed to load latest commit information.


CySCA 2015 Web Penetration Testing Component

Configured for running in Vagrant by @nickw444

Running The Box:

  1. Install Vagrant
  2. git clone https://github.com/nickw444/CySCA2015.git
  3. cd CySCA2015/web_application_pentest/files/
  4. vagrant plugin install vagrant-hosts
  5. vagrant plugin install vagrant-hostsupdater
  6. vagrant up - You will be prompted for your password for a sudo command. (And will be prompted more than once. Keep your eye on it.) This is adding www.ecwi.cysca and support.ecwi.cysca to your hosts file.
  7. Wait for about 20 minutes (maybe longer?). The boxes are being provisioned.
  8. Vagrant will tell you when it's done. When it is, jump to your browser and go to www.ecwi.cysca and support.ecwi.cysca. If this didn't work, scroll down and take a look at the notes section.
  9. (Hopefull) Start hacking!

When you're down, you can switch off the vagrant VM by typing vagrant halt into your terminal.

Good luck!

If you have any questions; Tweet me: @nickw444.


If for some reason vagrant-hostsupdater doesn't do it's job, you will need to modify your hosts file and add entries for support.ecwi.cysca and www.ecwi.cysca.

Add the following to your /etc/hosts file: www.ecwi.cysca support.ecwi.cysca

Systems Needed


  • www_server - Files for the WWW server
  • support_server - Files for the support server