DVWA(Damn Vulnerable Web Application) V1.8 Windows 8.1Windows 7 .Net Framework 3.5 PHP+MySQL XAMPP V3.2.1 http://www.dvwa.co.uk/DVWAc:\xampp\htdocs\DVWA config\config.inc.php $_DVWA[ 'db_server' ] = 'localhost'; $_DVWA[ 'db_database' ] = 'dvwa'; $_DVWA[ 'db_user' ] = 'root'; $_DVWA[ 'db_password' ] = 123456; $_DVWA['default_security_level'] = "low"; http://127.0.0.1/DVWA/login.php BruterWebCruiser Web Vulnerability Scanner V2.8.0 (http://sec4app.com ) 123 456 Resend Bruter Bruter username password Bruter :Go admin/password WebBrowser DVWASecurity lowlowDVWA DVWA BruteForce Resend Bruter GET Go admin/password Windows Windows dir CSRF SQL SQL InjectionWebCruiser Scan URL: SQL SQL INJECTION POCSQL root SQL Injection Blind Web BrowserSQL Injection (Blind)Scan URL: XSS ReflectedScan URL: Scan URL DVWA