Introducing vulnserver
We will be using vulnserver (http://grey-corner.blogspot.com/2010/12/introducing-vulnserver.html) as our target during several of the following exercises. This intentionally vulnerable application was created by Stephen Bradshaw to provide himself and the security community with an application that can be used to practice various security-related tasks.
Ideally, the program is to be run on a Windows-based machine; as we are trying to keep the book focused on open source and freely available programs we will run the server on our BackTrack machine. This will be sufficient to learn about more about the fuzzing tools available in BackTrack.
Download the vulnserver application to your BackTrack machine, unzip it, review the LICENSE and README files carefully, and after disconnecting the BackTrack instance from the Internet again, start vulnserver.exe up using the following command:
# wine vulnserver.exe 4444
Starting vulnserver version 1.00
Called essential function dll...
