Urbino`s University - Computing and digital innovation - IT security
Academic pentesting & security evaluation lab for a Master's Cybersecurity course. Simulates a Cyber Kill Chain in an isolated VirtualBox network (Kali vs Apache/PHP/MySQL). Explores web attacks (SQLi, XSS, Command Injection), log analysis, and secure coding remediation to assess and improve the overall system security posture.
To ensure a safe and controlled environment, the penetration testing laboratory is deployed on VirtualBox using an Internal Network configuration (named LabSicurezza). This guarantees total isolation from the host machine and the external internet.
- Attacker Machine (Kali Linux): * IP:
192.168.100.10- Role: Execution of vulnerability scanning, enumeration, and exploitation.
- Victim Machine (Vulnerable Server): * IP:
192.168.100.20- Role: Hosting vulnerable web applications and services to monitor logs and implement defense strategies.