The vulnerable bee-box virtual machine will have the IP address 192.168.56.12 and the vulnerable service is running on port 8443. Let's start by identifying the vulnerability in the server:
- We use sslscan to check the TCP port 8443 on bee-box; as the following screenshot shows, we will find it is vulnerable to Heartbleed:
- By exploiting Heartbleed we will extract information from the server, before proceeding to undertake some activities in the applications, like logging into bWAPP (https://192.168.56.12:8443/bwapp/) to be sure there's some data in the server's memory.
- Now, to look for an exploit in the local copy of Exploit-DB, ...