Skip to content

aalokor/security_project

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

41 Commits
src
src
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 
schema.sql
schema.sql
 
 
tasks.py
tasks.py
 
 

Repository files navigation

security_project

Cyber Security Base 2022 Project 1, created to demonstrate different security issues. This project is a simple program for saving references. It includes the following security flaws:

1. Injection

  • Sql queries vunlerable to injection

2. Broken access control

  • Bybassing access control by modifying the url

3. Identification and authentication failures

  • Uses plain text when storing passwords

4. Security misconfiguration

  • Default accounts and passwords are enabled

5. Vulnerable and outdated components

  • Uses an old version of django

Installation for linux

  1. Download the project file from here: Security_project v 2.2
  2. Navigate to the root of the project file
  3. Install virtual environment:
python3 -m venv venv
  1. Activate virtual environment:
source venv/bin/activate
  1. Install requirements:
pip install -r requirements.txt
  1. Make django migrations:
invoke migrate

Running

  1. Activate virtual environment:
source venv/bin/activate
  1. Run:
invoke start

  1. Stop running: CONTROL-C

  2. Deactivate virtual enviroment:

deactivate

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 4

Security_project v 2.2 Latest
Dec 30, 2022
+ 3 releases

Packages

No packages published

Languages