dvwa-107

1. #/bin/bash
2.  
3. echo -e "site for script is curl https://pastebin.com/raw/xxxxxxxxxx"
4. echo -e "\n#######################################"
5. echo -e "# Damn Vulnerable Web App Installer Script #"
6. echo -e "#######################################"
7. echo -e -n "\n[*] Changing directory to /var/www..."
8. cd /var/www > /dev/null
9. echo -e "Done!\n"
10. echo -n "[*] Removing default index.html..."
11. rm index.html > /dev/null
12. echo -e "Done!\n"
13. echo -n "[*] Changing to Temp Directory..."
14. cd /tmp
15. echo -e "Done!\n"
16. echo "[*] Downloading DVWA..."
17. wget --no-check-certificate https://github.com/KevinCurran2/dvwa-108/blob/master/dvwa-1.0.7.zip ;
18. echo -e "Done!\n"
19. echo -n "[*] Unzipping DVWA..."
20. unzip DVWA-1.0.7.zip > /dev/null
21. echo -e "Done!\n"
22. echo -n "[*] Deleting the zip file..."
23. rm DVWA-1.0.8.zip > /dev/null
24. echo -e "Done!\n"
25. echo -n "[*] Copying dvwa to root of Web Directory..."
26. cp -R dvwa/* /var/www > /dev/null
27. echo -e "Done!\n"
28. echo -n "[*] Clearing Temp Directory..."
29. rm -R dvwa > /dev/null
30. echo -e "Done!\n"
31. echo -n "[*] Enabling Remote include in php.ini..."
32. cp /etc/php5/apache2/php.ini /etc/php5/apache2/php.ini1
33. sed -e 's/allow_url_include = Off/allow_url_include = On/' /etc/php5/apache2/php.ini1 > /etc/php5/apache2/php.ini
34. rm /etc/php5/apache2/php.ini1
35. echo -e "Done!\n"
36. echo -n "[*] Enabling write permissions to /var/www/hackable/upload..."
37. chmod 777 /var/www/hackable/uploads/
38. echo -e "Done!\n"
39. echo -n "[*] Starting Web Service..."
40. service apache2 start &> /dev/null
41. echo -e "Done!\n"
42. echo -n "[*] Starting MySQL..."
43. service mysql start &> /dev/null
44. echo -e "Done!\n"
45. echo -n "[*] Updating Config File..."
46. cp /var/www/config/config.inc.php /var/www/config/config.inc.php1
47. sed -e 's/'\'\''/'\''toor'\''/' /var/www/config/config.inc.php1 > /var/www/config/config.inc.php
48. rm /var/www/config/config.inc.php1
49. echo -e "Done!\n"
50. echo -n "[*] Updating Database..."
51. wget --post-data "create_db=Create / Reset Database" http://127.0.0.1/setup.php &> /dev/null
52. mysql -u root --password='toor' -e 'update dvwa.users set avatar = "/hackable/users/gordonb.jpg" where user = "gordonb";'
53. mysql -u root --password='toor' -e 'update dvwa.users set avatar = "/hackable/users/smithy.jpg" where user = "smithy";'
54. mysql -u root --password='toor' -e 'update dvwa.users set avatar = "/hackable/users/admin.jpg" where user = "admin";'
55. mysql -u root --password='toor' -e 'update dvwa.users set avatar = "/hackable/users/pablo.jpg" where user = "pablo";'
56. mysql -u root --password='toor' -e 'update dvwa.users set avatar = "/hackable/users/1337.jpg" where user = "1337";'
57. echo -e "Done!\n"
58. echo -e -n "[*] Starting Firefox to DVWA\nUserName: admin\nPassword: password"
59. firefox http://127.0.0.1/login.php &> /dev/null &
60. echo -e "\nDone!\n"
61. echo -e "[\033[1;32m*\033[1;37m] DVWA Install Finished!\n"