Operating the lab
Now that the components of the lab are fully set up, we are ready to make it work.
Setting up the OWASP BWA lab
Here are the steps we suggest to set up the OWASP BWA part of the lab:
- First, run the OWASP BWA VM from VirtualBox. Once it has started, it should display the screen shown in Figure 3.21. By now, the full list of web applications can be accessed at the address shown on the screen on your computer.
- To use Kali Linux, run your Kali VM from VirtualBox. Keep in mind that as long as OWASP BWA is running with the current settings, it can also access the web applications available from BWA. This is illustrated in the following screenshot:
This way, any emulated device on your computer can connect to the OWASP BWA server, thus making it possible to test a various range of attacks. Obviously, manual attacks can also be carried out from the comfort...