PHP web application for Information Security education, utilizing the OpenStack cloud platform for constructing security testing practice environment. Refer to this document for additional details: THS2024-77
- Building a security testing practice environment and providing knowledge about Information Security.
- Implementing lectures and challenges in the field of Information Security.
- Integrating Cloud Computing technology to build Attack VMs and Target VMs for security testing exercises.
OpenStack Cloud Computing Infrastructure manages attack and target VMs for security testing challenges
deployed on the web application. The application consists of three parts:
- Classes will provide knowledge in the field of Information Security for students through lectures and documents.
- CTF challenges with topics such as Forensics, Web Exploitation, Reverse Engineering, Cryptography,...
- Security testing exercises will be practiced by students through the VNC Console on the application.
- PHP >= 7.2.5
ext-curl
- Composer
composer require php-opencloud/openstack
composer require vlucas/phpdotenv
Create a new file named .env in your project root directory (the same directory as your composer.json file).
Inside the .env file, define your environment variables using the following syntax:
mysql_host=
mysql_username=
mysql_password=
mysql_database=
mysql_port=
stack_authUrl=
stack_region=
stack_userID=
stack_password=
stack_projectID=
stack_attackerID=
stack_targetID=
The .env file is essential for storing sensitive configuration details like API keys, database credentials,...
Never include your .env file in your version control system (e.g., Git).