owasp zap

CLIENT.sh

@@ -7,5 +7,15 @@ IP="20.60.0.2"
 sudo ifconfig enp0s8 $IP netmask 255.255.255.0
 sudo route add default gw 20.60.0.1
 
-# exploits
+# owasp zap
+instalar java-17-openjdk
+if [ ! -d "/opt/zap" ]; then
+    sudo wget -q https://github.com/zaproxy/zaproxy/releases/download/v2.14.0/ZAP_2.14.0_Linux.tar.gz -O /tmp/zap.tar.gz
+    sudo tar -xzf /tmp/zap.tar.gz -C /opt
+    sudo mv /opt/ZAP_2.14.0 /opt/zap
+    sudo ln -s /opt/zap/zap.sh /usr/local/bin/zap
+    rm -f /tmp/zap.tar.gz
+fi
 
+
+# exploits

FIREWALL.sh

@@ -24,4 +24,6 @@ sudo iptables -t nat -A POSTROUTING -o enp0s8 -j MASQUERADE
 sudo iptables-save > /etc/sysconfig/iptables
 
 sudo cp conf/httpd.conf /etc/httpd/httpd.conf
- 
+
+# apache
+s enable --now httpd

conf/httpd.conf

@@ -4,8 +4,8 @@ User apache
 Group apache
 
 Include conf.modules.d/*.conf
-IncludeOptional modsecurit.d/*.conf
+IncludeOptional modsecurity.d/*.conf
-IncludeOptional modsecurit.d/activated_rules/*.conf
+IncludeOptional modsecurity.d/activated_rules/*.conf
 
 <Directory />
     AllowOverride none
@@ -69,8 +69,17 @@ AddDefaultCharset UTF-8
     MIMEMagicFile conf/magic
 </IfModule>
 
+# reverse proxy for juice shop
+ProxyRequests Off
+ProxyPreserveHost On
+
+<VirtualHost *:420>
+    ProxyPass / http://10.60.0.2:3000/
+    ProxyPassReverse / http://10.60.0.2:3000/
+</VirtualHost>
+
 # EnableMMAP off
 # EnableSendfile on
-# IncludeOptional conf.d/*.conf
+IncludeOptional conf.d/*.conf
 ServerAdmin jeevacation@gmail.com
-# ServerName www.coimbravpn.com:420
+# ServerName www.coimbravpn.com:420