XXE Injections
Abusing XML Parsers
Vagrant is a great!
It’s uber awesome because with it you scan script your vms!
During the PEN-200 course I decided automate my kali virtual machine for a couple of reasons:
This repo auto builds a kali vm with my preferred pentesting tools. It comes with:
choco install vagrant vagrant-vmware-utility -y
This project uses the vmware provider and is based on the kalilinux/rolling box released by offsec.
Because it’s based on the box released by offsec its very fast to get up and …. rolling.
Assuming you have set up vmware, chocolatey, vagrant, and vagrant-vmware-utility ; clone the repo, go to project root, and type:
vagrant up