The password of the root is osboxes.org. Here are some of the tools installed in the VM and their usage:
Installed Tools | Description and Usage |
NodeGoat |
Vulnerable source code of NodeGoat project. |
0d1n |
This is used for fuzz testing. Use the keyword ^ for the fuzz testing data. $ ./0d1n |
androwarn |
It's a static code analyzer for malicious Android applications. $ python androwarn.py --help |
archerysec |
This is an Open Source Vulnerability Assessment and Management that helps developers and pentesters perform scans and manage vulnerabilities. $ docker pull archerysec/archerysec |
qark |
This is a Python tool to look for several security-related Android application vulnerabilities. $python qarkMain.py |
radamsa |
This is a dynamic fuzz data generator. ... |