^^ I assure you that it's our box. I am a Jr. Network Engineer at Black Lab Security. My boss setup the dummy site and it's just a simple coffee shop site. Is it really necessary for me to work through all these credentials before you attempt to attack it?
Monday morning, I will go to the machine, and see if I can put an image on the dummy site with our logo. But I'll take it back off, so I need you to have a time frame into which you would like for me to do this. I'm on CST (TN). Black Lab has a Maryland facility, but our lab is based out of Nashville, TN. So, pick the time frame, and I will try and put the image somewhere. However, there are no website development tools on the dummy box, so I will see what I can do to edit the page or anything.
If I am unable to add the image, what other method would you suggest? I have already offered my email addy to Black Lab, but no one has sent any messages thus far.
Another way you could look at it is, if the site was NOT ours, and I asked you to hit it, and you penetrated it (being someone elses site), that would jepordize my job, as you could point the finger right at me and our company because I lead you to believe the site was ours, and I was running this test for research purposes. Trust me, I LOVE my job. It's our site...lol. Again, you can confirm I work for Black Lab by emailing me at
tVoorhies@blacklabsecurity.com I will reply back to let you know I am legit. And no, I am not that good of a hacker to spoof a "security" companies email and add myself to the list, so I can fool people into hacking into someone elses website...