GameOver – Web PenTest Learning Platform
// June 14th, 2012 // Atheneum, Projects
Name : Game Over
Category : Web Pentest Learning Platform
File Type : VM image/iso
Author : Jovin Lobo
Mentor : Murtuja Bharmal
Download URL : http://sourceforge.net/projects/null-gameover/files
Default Credentials : [username:root / password:gameover]
Description :
Project GameOver was started with the objective of training and educating newbies about the basics of web security and educate them about the common web attacks and help them understand how they work. It is collection of various vulnerable web applications, designed for the purpose of learning web penetration testing.
GameOver has been broken down into two sections.
Section 1 consists of special web applications that are designed especially to teach the basics of Web Security. This seciton will cover
XSS
CSRF
RFI & LFI
BruteForce Authentication
Directory/Path traversal
Command execution
SQL injection
Section 2 is a collection of dileberately insecure Web applications. This section provides a legal platform to test your skills and to try and exploit the vulnerabilities and sharpen your skills before you pentest live sites. We would advice newbies to try and exploit these web applications. These applications provide real life environments and will boost their confidence.
29 Responses to “GameOver – Web PenTest Learning Platform”
Leave a Reply
n|u Security Jobs – 5 recent posts
- [Full-time] Web App Sec / Pentesting - 8+ Years of Exp Only! at PwC SDC
- [Full-time] Information Security Trainer at HackerSchool (Unit of Cartel Software)
- [Full-time] Sales & Marketing at Torrid Networks Pvt Ltd
- [Full-time] Dell SonicWALL Test Engineer II (SSL-VPN, SECURITY)-13000E3J at Dell
- [Full-time] Application Security Specialist at Varutra.com
My photos. Now you know me.
- seems interesting said: i will be in touch...
- push said: Hi Adeel, null meets are free...and anyone can at...
- adeel said: can i attend these? are there any things to be ful...
- RAJESH said: where is the venue site...
- Pramod said: i want to join it,,,what i have to do then...
- reverser said: Hi Viveik, Please register yourself on the link m...
- [null][Banglore][Meet] 08th September, 2012 @ Thoughtworks
- null Mumbai Chapter October 2012 Meet - 25/10/2012 @ Institute of Information Security
- null Bangalore Chapter March 2013 Meet - 16/03/2013 @ Thoughtworks
- [null][Mumbai][Meet] 20th September, 2012 @ Institute of Information Security
- [null][Banglore][Meet] 11th August, 2012 @ Thoughtworks, ACR Mansion
hi
i want to known what is the default username and passwd for game over.
Thank you!
Hi,
I think, this is a cool idea for newbies to learn.
Hey mrWrong,
Sorry for the late reply..
The default credentials are [Username:root / Password:gameover]
greatttttt idea man!
the user and login details are:
Login: root
Password: gameover
Hello, i have burn and boot it, after i login using username : root and password is : gameover, it’s just show command promp/terminal, if this is in GUI mode or terminal mode because when i type startx, its just show nothing, so, what to do now ? thank for advanced..
DID anyone try this ?
@shahril : Hey sharil please note that Gameover hosts the vulnerable Web Apps. So once you login, the IP address of GameOver will be displayed. Now to access it you will have to enter this IP on your client browser.
I have the same issue shahril. I even put the ip addresses into chrome and got several errors stating it could not connect.
huh…what a crap method to host a webapp…:/
[...] http://null.co.in/2012/06/14/gameover-web-pentest-learning-platform/ [...]
please i just got this game over DVD from a friend and i do not know how to extract it to ma vmware player…could someone help..thanks
It’s an excellent vulnerable OS i have ever seen in my 5 years of Pentesting… God bless to the developer…. cheers…
Mr. Wilson- Kindly download vmware workstation 7 or 8 then create a new OS and add this ISO image to boot from… done…
I create a new VirtualBox OS,I run it and enter root/gameover.But when I run my browser(firefox) it just can’t connect.Either I connect to localhost or eth0 inet address.I always get “The connection has timed out The server at … is taking too long to respond.” Is there any way to check if everything is working good on the server?
Ok, i have installed the iso on my VMware, used the login credentials, it automatically gives me the ifconfig, what next? you said use type the IP address of the server unto the client’s browser. How do you do that? Who is the client or what is the client? because I really do not think my physical system works as the client….please explain more
[...] Página web del proyecto: http://null.co.in/2012/06/14/gameover-web-pentest-learning-platform/ [...]
Esta disponible en Español?
@Paco No, a partir de ahora.
Hi, When I try to open it with VM the Vm asks for the type of OS. So what OS is the game over…… Thanks
Select the type of OS as Linux (version you can select the option ‘Ubuntu’ or ‘Debian’)
Guys, can somebody please help? Not able to understand what to do after mounting it on Virtual Box? I put the ip that i got in Gameover into my host’s firefox but connection timed out.. Whats the issue?
Open firefox, put the ip that gameover distro gives u then read.
The ip usually begins 192.168.1.* (network)
If u want u can download a little pdf with a litlle help!
http://www.4shared.com/office/cO7X8Mq-/GameOver_Read_ME.html
Enjoy
rooter @ irc.ptnet.org
#toolkit
[...] http://null.co.in/2012/06/14/gameover-web-pentest-learning-platform/ [...]
Hi, for those who still can’t make it work. If you’re using it on a vmware machine, check the network option and choose replicate network and start the machine, use the mentioned credentials and the ip with the eth0 use it on the browser of the pc host and there you will see the GameOver screen.
Salu2
GAME OVER ON ORICLE VIRTUALBOX INSTALLATION GUIDE
1 Download GameOver from http://sourceforge.net/projects/null-gameover/files/GameOver.0.1.null.iso/download
2 Open VirtualBox (or download and install it from https://www.virtualbox.org/wiki/Downloads.)
3 in the VirtualBox Manager, click New
4 HERES WHAT TO ENTER:
Name: GameOver(Or whatever you want to call your new virtual machine)
Type: Linux
Version: Other Linux
5 I personally set my memory size to 2048 MB, hit next
6 Make sure create a virtual hard drive now is selected, hit create
7 make sure VDI is selected hit next
8 make sure dynamically allocated is selected, hit next
9 set to 8 gb (Or more if you really want, although more is unnecessary) hit create
10 on the left hand side of the VirtualBox Manager, click on your GameOver VirtualMachine, hit settings
11 click on Network
12 MAKE SURE YOUR ADAPTER SETTINGS ARE SET LIKE THIS:
ADAPTER 1 Settings:
Enable Network Adapter- Checked
Attached to: (Select Host-only Adapter)
Name: VirtualBox Host-Only Ethernet Adapter
EXPAND ADVANCED TAB
Promiscuous Mode: (Select Deny)
Make sure cable connected is checked
HIT OK!
13 Select game over in the left hand side of the VirtualBox Manager, Hit Start (at the top of the VirtualBox Manager)
14 On first start up of GameOver Virtual Machine, at select Start-up disk, click the little folder, and navigate to your downloaded
GameOver iso, select it, and hit start.
15 select Live
16 let it boot
17 at login prompt:
login: root
Password: gameover
18 type in ifconfig then hit enter
19 look for eth0, and copy the inet addr (should begin with 192.168.xx.xxx)
20 open your internet browser, and in the address bar enter the inet addr.
21 ENJOY!
Nice Module Collection !!!
Where Is phpmyadmin !???
you should add it
I’m trying to run GameOver in VirtualBox, but when I do get this error:
‘Unknown keyword in configuration file’
‘No DEFAULT or UI configuration directive found!’
I’ve tried using VMware Player as well, but still got the same error. Any thoughts?
Hi i have download the gameover and installed it , after i login using username : root and password is : gameover, it’s just show command promp/terminal, and when i type startx, its just show nothing, please i need help