# Darkly

*Introduction to cybersecurity*

## Resources

- [OWASP](https://owasp.org/) provides cybersecurity resources for free
- [OWASP top 10](https://owasp.org/Top10/2025/) most critical web security risks
- [WSTG](https://owasp.org/www-project-web-security-testing-guide/) Web Security Testing Guide

## How-to

1. Start the VM

    ```bash
    qemu-system-x86_64 \
      -enable-kvm \
      -m 2048 \
      -smp 2 \
      -cdrom Darkly_i386.iso \
      -boot order=d \
      -nic user,hostfwd=tcp:127.0.0.1:8080-:80
    ```

1. Make the host answer on the same address as the VM

    ```bash
    sudo ip address add 10.0.2.15/32 dev lo
    ```

1. Forward traffic to the VM

    ```bash
    sudo socat TCP-LISTEN:80,bind=10.0.2.15,reuseaddr,fork TCP:127.0.0.1:8080
    ```

1. Delete the address when done

    ```bash
    sudo ip address delete 10.0.2.15/32 dev lo
    ```