28 June 2013

Samurai Notes



Samurai Web Test Framework

The Samurai Web Test Framework is an excellent starting place to learn the intricacies of  security testing of web-based systems. 

Because of the nature of the content on the system, it is locked down in various ways to remain walled off. 

Here are notes on how to gain remote access to the system.

SSH Access

The remote ssh sessions will be refused with the message “no hostkey alg”. 

On Samurai, run the following commands:

# ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key
# ssh-keygen -t dsa -f /etc/ssh/ssh_host_dsa_key