DVWA Security Level
https://securingninja.com/dvwa-hacking-tutorial/
DVWA Security Levels
How many security levels are there in DVWA?
There are 4 security levels in DVWA. These range from LOW to IMPOSSIBLE and set the difficulty for attacking the application. The security levels also reveal how specific issues can be coded more securely.
LOW (๋ฎ์)
This security level is completely vulnerable and has no security measures at all. It is meant to be an example of how web application vulnerabilities manifest through bad coding practices.
(๋ณด์ ์กฐ์น๊ฐ ์ ํ ์์ผ๋ฉฐ, ์น ์์ฉ ํ๋ก๊ทธ๋จ์ ์ทจ์ฝ์ ์ด ์๋ชป๋ ์ฝ๋ฉ์ ํตํด ์ด๋ป๊ฒ ๋ํ๋๋์ง ๋ณด์ฌ์ฃผ๋ ์์์ด๋ค.)
MEDIUM (์ค๊ฐ)
This level is more difficult than low and illustrates bad security practices, where the developer has tried but failed to secure an application. This level will require more sophisticated exploitation techniques.
(๋ฎ์ ์์ค๋ณด๋ค๋ ๋ ์ด๋ ต๊ณ ๊ฐ๋ฐ์๊ฐ ์ ํ๋ฆฌ์ผ์ด์ ์ ๋ณด์ํ๋ ค๊ณ ์๋ํ์ง๋ง ์คํจํ ๋์ ๋ณด์ ์์๋ฅผ ๋ณด์ฌ์ค๋ค. ์ด ์์ค์์๋ ๋ณด๋ค ์ ๊ตํ ์ ์ฉ ๊ธฐ์ ์ด ํ์ํ๋ค.)
HIGH (๋์)
This option is an extension to the medium difficulty, with a mixture of harder or alternative bad practices to attempt to secure the code. The vulnerability may not allow the same extent of exploitation.
(์ฝ๋ ๋ณด์์ ์๋ํ๊ธฐ ์ํด ๋ ์ด๋ ค์ด, ๋๋ ๋์์ ์ธ ์๋ชป๋ ๋ณด์์ด ํผํฉ๋์ด ์๋ค.)
IMPOSSIBLE (๋ถ๊ฐ๋ฅ)
This level should be secure against all vulnerabilities. It is used to compare the vulnerable source code to the secure source code.
(๋ชจ๋ ์ทจ์ฝ์ ์ผ๋ก๋ถํฐ ์์ ํ๋๋ก ์ค๊ณ๋์ด์์ผ๋ฉฐ, ์ทจ์ฝํ ์์ค์ฝ๋๋ฅผ ๋ณด์ ์์ค์ฝ๋์ ๋น๊ตํ๋๋ฐ ์ฌ์ฉ๋๋ค.)