使用DVL Linux练习Linux安全攻防

　　"The main idea behind DVL," says Schneider, "was to build up a training system that I could use for my university lectures." His goal was to design a Linux system that was as vulnerable as possible, to teach topics such as reverse code engineering, buffer overflows, shellcode development, Web exploitation, and SQL injection.

　　Schneider says that DVL's sole purpose is to give users as many security tools and training options as possible. "DVL is made by people with significant black hat backgrounds, incorporating the community of ReverseEngineering.net and Crackmes.de. It contains a huge amount of lessons, including lesson descriptions and solutions if the level has been solved by a community member at Crackmes.de.

　　"We wanted to build up a plug-and-play system. Simply run DVL in a virtual machine, with all the required tools installed, [and you have] functional training lessons included, ready to go."

　　Josh Sweeney, a security expert working for SPI Dynamics and editor of SecurityDistro.com, agrees. "The DVL staff," he says, "recognized that most of the tutorials on the Internet were either hard to follow, didn't work, or were just too advanced for many users. They packaged tools, workbooks, text tutorials, and exploits into one easy-to-use live distribution, then took the extra step to create their own video tutorials."