Sites to test Network Scanner
1,295 views
Skip to first unread message
Matteo B
Nov 15, 2023, 9:06:56 AM11/15/23
to ZAP User Group
Hi all,
this is not a question related to the use of Zaproxy directly but doing research on sites where I can test scanners brought me here, but I don't know where else to write this question.
I am using Network Vulnerability Scanners for my studies (OpenVas, Nmap and Shodan), so far I have only tested them in a virtual environment and they are working properly, the next step for my thesis is to test these scanners on a public Ip address, I know of course I can't test ip addresses without the consent of the owner because it is illegal , and so I was searching around the net if there are sites specifically created to be tested by this type of scanner and the only one I could find is scanme.nmap.org.
The thing is, I should find a couple more if I can, but of similar ones I could only find sites specifically made to be scanned by web scanners like these:
http://testasp.vulnweb.com/
https://demo.testfire.net/
http://zero.webappsecurity.com/
this is not a question related to the use of Zaproxy directly but doing research on sites where I can test scanners brought me here, but I don't know where else to write this question.
I am using Network Vulnerability Scanners for my studies (OpenVas, Nmap and Shodan), so far I have only tested them in a virtual environment and they are working properly, the next step for my thesis is to test these scanners on a public Ip address, I know of course I can't test ip addresses without the consent of the owner because it is illegal , and so I was searching around the net if there are sites specifically created to be tested by this type of scanner and the only one I could find is scanme.nmap.org.
The thing is, I should find a couple more if I can, but of similar ones I could only find sites specifically made to be scanned by web scanners like these:
http://testasp.vulnweb.com/
https://demo.testfire.net/
http://zero.webappsecurity.com/
And the page where I found these sites led me here and I wanted to ask if you could scan the Ip addresses of these sites using also network scanners like the ones I mentioned before,
Sorry again for the out of context question and thanks in advance for the answer (I tried to write also in the appropriate forums of the scanners I'm using but nobody answered)
Sorry again for the out of context question and thanks in advance for the answer (I tried to write also in the appropriate forums of the scanners I'm using but nobody answered)
Simon Bennetts
Nov 15, 2023, 9:10:53 AM11/15/23
to ZAP User Group
Theres an OWASP project for vulnerable web apps: https://owasp.org/www-project-vulnerable-web-applications-directory/
Some of those might also include some suitable sites for you?
Cheers,
Simon
Matteo B
Nov 15, 2023, 10:40:26 AM11/15/23
to ZAP User Group
I checked them one by one but unfortunately they are all useful sites for website scanners but not for network scanners, thank you very much for your reply but unfortunately I can't find other Ip addresses useful for my testing purpose, maybe I do the search with the wrong words.
Abdulkadir Ibrahim
Nov 12, 2024, 6:57:05 PM11/12/24
to ZAP User Group
i think you should use nslookup on the home url to get the ip addresses on the legally allowed sites then run your scan
Reply all
Reply to author
Forward
0 new messages