{"id":19846,"date":"2024-07-24T15:25:37","date_gmt":"2024-07-24T08:25:37","guid":{"rendered":"https:\/\/thegioifirewall.com\/?p=19846"},"modified":"2025-03-24T07:27:23","modified_gmt":"2025-03-24T07:27:23","slug":"huong-dan-cau-hinh-tan-cong-va-kiem-tra-tuong-lua-ung-dung-web-sophos-xg","status":"publish","type":"post","link":"https:\/\/vacif.com\/en\/huong-dan-cau-hinh-tan-cong-va-kiem-tra-tuong-lua-ung-dung-web-sophos-xg\/","title":{"rendered":"H\u01af\u1edaNG D\u1eaaN C\u1ea4U H\u00ccNH T\u1ea4N C\u00d4NG V\u00c0 KI\u1ec2M TRA T\u01af\u1edcNG L\u1eecA \u1ee8NG D\u1ee4NG WEB SOPHOS XG"},"content":{"rendered":"<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"568\" height=\"357\" src=\"http:\/\/aws.vacif.com\/wp-content\/uploads\/sites\/3\/2024\/07\/tuong-lua-ung-dung-web-sophos-xg-0-1.png\" alt=\"\" class=\"wp-image-19848\" srcset=\"https:\/\/vacif.com\/en\/wp-content\/uploads\/sites\/3\/2024\/07\/tuong-lua-ung-dung-web-sophos-xg-0-1.png 568w, https:\/\/vacif.com\/en\/wp-content\/uploads\/sites\/3\/2024\/07\/tuong-lua-ung-dung-web-sophos-xg-0-1-300x189.png 300w\" sizes=\"auto, (max-width: 568px) 100vw, 568px\" \/><\/figure>\n<\/div>\n\n\n<p><\/p>\n\n\n\n<p>WAF (Web Application Firewall) c\u1ee7a Sophos l\u00e0 m\u1ed9t gi\u1ea3i ph\u00e1p b\u1ea3o m\u1eadt \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf \u0111\u1ec3 b\u1ea3o v\u1ec7 c\u00e1c \u1ee9ng d\u1ee5ng web kh\u1ecfi c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng v\u00e0 l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt. N\u00f3 cung c\u1ea5p m\u1ed9t l\u1edbp b\u1ea3o v\u1ec7 b\u1ed5 sung b\u1eb1ng c\u00e1ch gi\u00e1m s\u00e1t, l\u1ecdc v\u00e0 ch\u1eb7n c\u00e1c y\u00eau c\u1ea7u \u0111\u1ebfn c\u00e1c \u1ee9ng d\u1ee5ng web nh\u1eb1m ng\u0103n ch\u1eb7n c\u00e1c ho\u1ea1t \u0111\u1ed9ng \u0111\u1ed9c h\u1ea1i.<\/p>\n\n\n\n<p>T\u00ednh n\u0103ng c\u1ee7a WAF Sophos:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>B\u1ea3o v\u1ec7 ch\u1ed1ng l\u1ea1i c\u00e1c l\u1ed7 h\u1ed5ng web ph\u1ed5 bi\u1ebfn:<\/strong> Ch\u1ed1ng l\u1ea1i c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), v\u00e0 nhi\u1ec1u l\u1ed7 h\u1ed5ng kh\u00e1c.<\/li>\n\n\n\n<li><strong>Ki\u1ec3m tra v\u00e0 l\u1ecdc l\u01b0u l\u01b0\u1ee3ng:<\/strong> Ph\u00e2n t\u00edch c\u00e1c y\u00eau c\u1ea7u HTTP\/HTTPS \u0111\u1ec3 ph\u00e1t hi\u1ec7n v\u00e0 ng\u0103n ch\u1eb7n c\u00e1c y\u00eau c\u1ea7u \u0111\u1ed9c h\u1ea1i tr\u01b0\u1edbc khi ch\u00fang c\u00f3 th\u1ec3 ti\u1ebfp c\u1eadn \u1ee9ng d\u1ee5ng web.<\/li>\n\n\n\n<li><strong>Ch\u1ebf \u0111\u1ed9 b\u1ea3o v\u1ec7 \u0111a l\u1edbp:<\/strong> K\u1ebft h\u1ee3p nhi\u1ec1u l\u1edbp b\u1ea3o v\u1ec7 \u0111\u1ec3 t\u0103ng c\u01b0\u1eddng kh\u1ea3 n\u0103ng b\u1ea3o m\u1eadt, bao g\u1ed3m ki\u1ec3m tra ch\u1eef k\u00fd, ph\u00e1t hi\u1ec7n h\u00e0nh vi b\u1ea5t th\u01b0\u1eddng, v\u00e0 quy t\u1eafc t\u00f9y ch\u1ec9nh.<\/li>\n\n\n\n<li><strong>T\u00edch h\u1ee3p SSL\/TLS:<\/strong> H\u1ed7 tr\u1ee3 m\u00e3 h\u00f3a SSL\/TLS \u0111\u1ec3 b\u1ea3o v\u1ec7 d\u1eef li\u1ec7u truy\u1ec1n t\u1ea3i gi\u1eefa ng\u01b0\u1eddi d\u00f9ng v\u00e0 m\u00e1y ch\u1ee7 \u1ee9ng d\u1ee5ng web.<\/li>\n\n\n\n<li><strong>Ki\u1ec3m so\u00e1t truy c\u1eadp v\u00e0 x\u00e1c th\u1ef1c:<\/strong> H\u1ed7 tr\u1ee3 x\u00e1c th\u1ef1c ng\u01b0\u1eddi d\u00f9ng v\u00e0 ki\u1ec3m so\u00e1t truy c\u1eadp \u0111\u1ec3 \u0111\u1ea3m b\u1ea3o ch\u1ec9 nh\u1eefng ng\u01b0\u1eddi d\u00f9ng \u0111\u01b0\u1ee3c \u1ee7y quy\u1ec1n m\u1edbi c\u00f3 th\u1ec3 truy c\u1eadp c\u00e1c t\u00e0i nguy\u00ean nh\u1ea1y c\u1ea3m.<\/li>\n\n\n\n<li><strong>B\u00e1o c\u00e1o v\u00e0 gi\u00e1m s\u00e1t:<\/strong> Cung c\u1ea5p c\u00e1c b\u00e1o c\u00e1o chi ti\u1ebft v\u00e0 c\u00f4ng c\u1ee5 gi\u00e1m s\u00e1t \u0111\u1ec3 theo d\u00f5i v\u00e0 ph\u00e2n t\u00edch c\u00e1c s\u1ef1 ki\u1ec7n b\u1ea3o m\u1eadt.<\/li>\n\n\n\n<li><strong>T\u00edch h\u1ee3p d\u1ec5 d\u00e0ng:<\/strong> D\u1ec5 d\u00e0ng t\u00edch h\u1ee3p v\u1edbi c\u00e1c h\u1ec7 th\u1ed1ng v\u00e0 \u1ee9ng d\u1ee5ng hi\u1ec7n c\u00f3, cung c\u1ea5p kh\u1ea3 n\u0103ng qu\u1ea3n l\u00fd v\u00e0 tri\u1ec3n khai linh ho\u1ea1t.<\/li>\n<\/ul>\n\n\n\n<p><strong>S\u01a1 \u0111\u1ea7u c\u1ea5u h\u00ecnh<\/strong><\/p>\n\n\n<div class=\"wp-block-image aligncenter size-full\">\n<figure ><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-1.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<p><strong>C\u00e1c b\u01b0\u1edbc c\u1ea5u h\u00ecnh T\u01b0\u1eddng l\u1eeda \u1ee9ng d\u1ee5ng web Sophos XG<\/strong><\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>C\u1ea5u h\u00ecnh c\u00e0i \u0111\u1eb7t Web Server DVWA.<\/strong><\/li>\n<\/ol>\n\n\n\n<p>DVWA bao g\u1ed3m nhi\u1ec1u lo\u1ea1i l\u1ed7 h\u1ed5ng, l\u00e0m cho n\u00f3 tr\u1edf th\u00e0nh m\u1ed9t c\u00f4ng c\u1ee5 h\u1ecdc t\u1eadp to\u00e0n di\u1ec7n. M\u1ed9t s\u1ed1 l\u1ed7 h\u1ed5ng c\u00f3 th\u1ec3 t\u00ecm th\u1ea5y trong DVWA bao g\u1ed3m SQL injection, cross-site scripting (XSS), ch\u00e8n l\u1ec7nh, bao g\u1ed3m t\u1ec7p t\u1eeb xa, v.v. M\u1ed7i l\u1ed7 h\u1ed5ng \u0111\u01b0\u1ee3c t\u1ea1o c\u1ea9n th\u1eadn \u0111\u1ec3 m\u00f4 ph\u1ecfng c\u00e1c t\u00ecnh hu\u1ed1ng trong th\u1ebf gi\u1edbi th\u1ef1c, \u0111\u1ea3m b\u1ea3o r\u1eb1ng ng\u01b0\u1eddi d\u00f9ng g\u1eb7p ph\u1ea3i m\u1ed9t lo\u1ea1t c\u00e1c v\u1ea5n \u0111\u1ec1 b\u1ea3o m\u1eadt th\u01b0\u1eddng g\u1eb7p trong c\u00e1c \u1ee9ng d\u1ee5ng web.<\/p>\n\n\n\n<p>\u0110\u1ec3 c\u00e0i \u0111\u1eb7t DVWA tr\u00ean Ubunu: <a href=\"https:\/\/thegioifirewall.com\/dvwa-huong-dan-cai-dat-may-chu-dvwa-tren-ubuntu\/\">https:\/\/thegioifirewall.com\/dvwa-huong-dan-cai-dat-may-chu-dvwa-tren-ubuntu\/<\/a><\/p>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>T\u00ecnh hu\u1ed1ng c\u1ea5u h\u00ecnh.<\/strong><\/li>\n<\/ol>\n\n\n\n<p><strong>L\u01afU \u00dd: Tr\u01b0\u1edbc khi t\u1ea5n c\u00f4ng h\u00e3y di chuy\u1ec3n \u0111\u1ebfn m\u1ee5c DVWA Security -&gt; Ch\u1ecdn Security Level: LOW -&gt; Sau \u0111\u00f3 \u1ea5n Submit.<\/strong><\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-2.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<ol class=\"wp-block-list\">\n<li><strong>T\u1ea5n c\u00f4ng XSS (DOM) khi web ch\u01b0a c\u1ea5u h\u00ecnh t\u00ednh n\u0103ng b\u1ea3o v\u1ec7 WAF.<\/strong><\/li>\n<\/ol>\n\n\n\n<p>Truy c\u1eadp giao di\u1ec7n <strong>DVWA &gt; XSS (DOM) &gt; Select.<\/strong><\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-3.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<p>Sau khi nh\u1ea5n <strong>Select<\/strong> ta \u0111\u01b0\u1ee3c \u0111\u01b0\u1eddng link<strong>: <\/strong>http:\/\/115.78.230.23\/dvwa\/vulnerabilities\/xss_d\/?default=English<\/p>\n\n\n\n<p>Th\u00eam m\u1ed9t \u0111o\u1ea1n script t\u1ea5n c\u00f4ng XSS v\u00e0o ph\u00eda sau \u0111\u01b0\u1eddng link: http:\/\/115.78.230.23\/dvwa\/vulnerabilities\/xss_d\/?default=English<strong>&lt;script&gt;alert(document.cookie)&lt;\/script&gt;<\/strong><\/p>\n\n\n\n<p>K\u1ebft qu\u1ea3 tr\u1ea3 v\u1ec1 sau khi ch\u1ea1y script l\u00e0 s\u1ebd l\u00e0 session ID, cookie c\u1ee7a ng\u01b0\u1eddi d\u00f9ng.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-4.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>T\u1ea5n c\u00f4ng SQL Injection khi web ch\u01b0a c\u1ea5u h\u00ecnh t\u00ednh n\u0103ng b\u1ea3o v\u1ec1 WAF.&nbsp;<\/strong><\/li>\n<\/ol>\n\n\n\n<p>Truy c\u1eadp giao di\u1ec7n<strong> DVWA &gt;&nbsp; SQL Injection&nbsp;<\/strong><\/p>\n\n\n\n<p>Nh\u1eadp \u0111o\u1ea1n script sau: %\u2019 and 1=0 union select null, concat(first_name,0x0a,last_name,0x0a,user,0x0a,password) from users # v\u00e0 \u1ea5n<strong> Submit<\/strong><\/p>\n\n\n\n<p>K\u1ebft qu\u1ea3 tr\u1ea3 v\u1ec1 s\u1ebd bao g\u1ed3m th\u00f4ng tin nh\u1ea1y c\u1ea3m t\u1eeb b\u1ea3ng users, bao g\u1ed3m t\u00ean, h\u1ecd, t\u00ean ng\u01b0\u1eddi d\u00f9ng v\u00e0 m\u1eadt kh\u1ea9u c\u1ee7a ng\u01b0\u1eddi d\u00f9ng.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-5.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<ol start=\"3\" class=\"wp-block-list\">\n<li><strong>H\u01b0\u1edbng d\u1eabn c\u1ea5u h\u00ecnh WAF tr\u00ean Firewall Sophos.<\/strong><\/li>\n<\/ol>\n\n\n\n<p><strong>B\u01b0\u1edbc 1: <\/strong>Truy c\u1eadp v\u00e0o GUI c\u1ee7a Sophos Firewall,v\u00e0o ph\u1ea7n <strong>SYSTEM &gt; Hosts and services &gt; IP host &gt; Add &gt; Save. <\/strong>(T\u1ea1o IP host cho Web Server DVWA)<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-6.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-7.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<p><strong>B\u01b0\u1edbc 2: <\/strong>V\u00e0o ph\u1ea7n <strong>PROTECT &gt; Web Server &gt; Web Server &gt; Add.<\/strong><\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-8.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<p><strong>Name: <\/strong>\u0110\u1eb7t t\u00ean cho Web server&nbsp;<\/p>\n\n\n\n<p><strong>Host: <\/strong>Ch\u1ecdn host Web server DVWA \u0111\u00e3 t\u1ea1o tr\u01b0\u1edbc \u0111\u00f3&nbsp;<\/p>\n\n\n\n<p><strong>Type: <\/strong>Ch\u1ecdn Plaintext (HTTP)&nbsp;<\/p>\n\n\n\n<p><strong>Port: <\/strong>Ch\u1ecdn port 80&nbsp;<\/p>\n\n\n\n<p>Nh\u1ea5n <strong>Save<\/strong><\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-9.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<p><strong>B\u01b0\u1edbc 3<\/strong>: V\u00e0o ph\u1ea7n<strong> PROTECT &gt; Web server &gt; Protection policies &gt; Add.<\/strong><\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-10.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-11.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<p><strong>B\u01b0\u1edbc 4: <\/strong>V\u00e0o ph\u1ea7n<strong> PROTECT &gt; Rules and Policies &gt; Firewall Rule &gt; Add firewall rule &gt; New firewall Rule.<\/strong><\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-12.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<p><strong>Rule name: <\/strong>\u0110\u1eb7t t\u00ean cho rule&nbsp;<\/p>\n\n\n\n<p><strong>Rule position: <\/strong>Ch\u1ecdn Top&nbsp;<\/p>\n\n\n\n<p><strong>Rule group: <\/strong>Ch\u1ecdn None&nbsp;<\/p>\n\n\n\n<p><strong>Action: <\/strong>Ch\u1ecdn Protection with web server protection&nbsp;<\/p>\n\n\n\n<p><strong>Hosted address: <\/strong>Ch\u1ecdn port WAN m\u00e0 b\u1ea1n mu\u1ed1n cho b\u00ean ngo\u00e0i truy c\u1eadp.&nbsp;<\/p>\n\n\n\n<p><strong>Listening port: <\/strong>Ch\u1ecdn 80&nbsp;<\/p>\n\n\n\n<p><strong>Domains: <\/strong>Nh\u1eadp domain c\u1ee7a website c\u1ee7a b\u1ea1n (<strong>IP WAN<\/strong>)<\/p>\n\n\n\n<p><strong>Protection servers: <\/strong>Ch\u1ecdn host server \u0111\u00e3 t\u1ea1o tr\u01b0\u1edbc \u0111\u00f3&nbsp;<\/p>\n\n\n\n<p><strong>Protected servers: <\/strong>Ch\u1ecdn policy \u0111\u00e3 t\u1ea1o tr\u01b0\u1edbc \u0111\u00f3&nbsp;<\/p>\n\n\n\n<p><strong>Enable m\u1ee5c Pass host header&nbsp;<\/strong><\/p>\n\n\n\n<p>Nh\u1ea5n <strong>Save<\/strong><\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-13.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-14.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<p><strong>B\u01b0\u1edbc 5: Th\u1ef1c hi\u1ec7n t\u1ea5n c\u00f4ng XSS (DOM) DVWA khi \u0111\u00e3 c\u1ea5u h\u00ecnh ch\u00ednh s\u00e1ch WAF.<\/strong><\/p>\n\n\n\n<p>Th\u1ef1c hi\u1ec7n t\u01b0\u01a1ng t\u1ef1 t\u00ecnh hu\u1ed1ng c\u1ea5u h\u00ecnh 2.1<\/p>\n\n\n\n<p>Sau khi th\u1ef1c hi\u1ec7n t\u1ea5n c\u00f4ng XSS, vi\u1ec7c th\u1ef1c thi b\u1ecb ch\u1eb7n ngay l\u1eadp t\u1ee9c.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-15.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<p>M\u1edf <strong>log<\/strong> xem k\u1ebft qu\u1ea3.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-16.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<p><strong>B\u01b0\u1edbc 6: Th\u1ef1c hi\u1ec7n t\u1ea5n c\u00f4ng SQL Injection DVWA khi \u0111\u00e3 c\u1ea5u h\u00ecnh ch\u00ednh s\u00e1ch WAF<\/strong><\/p>\n\n\n\n<p>Th\u1ef1c hi\u1ec7n t\u01b0\u01a1ng t\u1ef1 t\u00ecnh hu\u1ed1ng c\u1ea5u h\u00ecnh 2.2<\/p>\n\n\n\n<p>Sau khi th\u1ef1c hi\u1ec7n t\u1ea5n c\u00f4ng SQL Injection, vi\u1ec7c th\u1ef1c thi \u0111\u00e3 b\u1ecb ch\u1eb7n ngay l\u1eadp t\u1ee9c<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-17.png\" alt=\"\"\/><\/figure>\n<\/div>\n\n\n<p>M\u1edf <strong>log<\/strong> xem k\u1ebft qu\u1ea3.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" src=\"https:\/\/uploads.thegioifirewall.com\/tuong-lua-ung-dung-web-sophos-xg-18.png\" alt=\"\"\/><\/figure>\n<\/div>","protected":false},"excerpt":{"rendered":"<p>WAF (Web Application Firewall) c\u1ee7a Sophos l\u00e0 m\u1ed9t gi\u1ea3i ph\u00e1p b\u1ea3o m\u1eadt \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf \u0111\u1ec3 b\u1ea3o v\u1ec7 c\u00e1c \u1ee9ng d\u1ee5ng web kh\u1ecfi c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng v\u00e0 l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt. N\u00f3 cung c\u1ea5p m\u1ed9t l\u1edbp b\u1ea3o v\u1ec7 b\u1ed5 sung b\u1eb1ng c\u00e1ch gi\u00e1m s\u00e1t, l\u1ecdc v\u00e0 ch\u1eb7n c\u00e1c y\u00eau c\u1ea7u \u0111\u1ebfn c\u00e1c \u1ee9ng d\u1ee5ng [&hellip;]<\/p>\n","protected":false},"author":8,"featured_media":20127,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_eb_attr":"","ocean_post_layout":"","ocean_both_sidebars_style":"","ocean_both_sidebars_content_width":0,"ocean_both_sidebars_sidebars_width":0,"ocean_sidebar":"","ocean_second_sidebar":"","ocean_disable_margins":"enable","ocean_add_body_class":"","ocean_shortcode_before_top_bar":"","ocean_shortcode_after_top_bar":"","ocean_shortcode_before_header":"","ocean_shortcode_after_header":"","ocean_has_shortcode":"","ocean_shortcode_after_title":"","ocean_shortcode_before_footer_widgets":"","ocean_shortcode_after_footer_widgets":"","ocean_shortcode_before_footer_bottom":"","ocean_shortcode_after_footer_bottom":"","ocean_display_top_bar":"default","ocean_display_header":"default","ocean_header_style":"","ocean_center_header_left_menu":"","ocean_custom_header_template":"","ocean_custom_logo":0,"ocean_custom_retina_logo":0,"ocean_custom_logo_max_width":0,"ocean_custom_logo_tablet_max_width":0,"ocean_custom_logo_mobile_max_width":0,"ocean_custom_logo_max_height":0,"ocean_custom_logo_tablet_max_height":0,"ocean_custom_logo_mobile_max_height":0,"ocean_header_custom_menu":"","ocean_menu_typo_font_family":"","ocean_menu_typo_font_subset":"","ocean_menu_typo_font_size":0,"ocean_menu_typo_font_size_tablet":0,"ocean_menu_typo_font_size_mobile":0,"ocean_menu_typo_font_size_unit":"px","ocean_menu_typo_font_weight":"","ocean_menu_typo_font_weight_tablet":"","ocean_menu_typo_font_weight_mobile":"","ocean_menu_typo_transform":"","ocean_menu_typo_transform_tablet":"","ocean_menu_typo_transform_mobile":"","ocean_menu_typo_line_height":0,"ocean_menu_typo_line_height_tablet":0,"ocean_menu_typo_line_height_mobile":0,"ocean_menu_typo_line_height_unit":"","ocean_menu_typo_spacing":0,"ocean_menu_typo_spacing_tablet":0,"ocean_menu_typo_spacing_mobile":0,"ocean_menu_typo_spacing_unit":"","ocean_menu_link_color":"","ocean_menu_link_color_hover":"","ocean_menu_link_color_active":"","ocean_menu_link_background":"","ocean_menu_link_hover_background":"","ocean_menu_link_active_background":"","ocean_menu_social_links_bg":"","ocean_menu_social_hover_links_bg":"","ocean_menu_social_links_color":"","ocean_menu_social_hover_links_color":"","ocean_disable_title":"default","ocean_disable_heading":"default","ocean_post_title":"","ocean_post_subheading":"","ocean_post_title_style":"","ocean_post_title_background_color":"","ocean_post_title_background":0,"ocean_post_title_bg_image_position":"","ocean_post_title_bg_image_attachment":"","ocean_post_title_bg_image_repeat":"","ocean_post_title_bg_image_size":"","ocean_post_title_height":0,"ocean_post_title_bg_overlay":0.5,"ocean_post_title_bg_overlay_color":"","ocean_disable_breadcrumbs":"default","ocean_breadcrumbs_color":"","ocean_breadcrumbs_separator_color":"","ocean_breadcrumbs_links_color":"","ocean_breadcrumbs_links_hover_color":"","ocean_display_footer_widgets":"default","ocean_display_footer_bottom":"default","ocean_custom_footer_template":"","ocean_post_oembed":"","ocean_post_self_hosted_media":"","ocean_post_video_embed":"","ocean_link_format":"","ocean_link_format_target":"self","ocean_quote_format":"","ocean_quote_format_link":"post","ocean_gallery_link_images":"on","ocean_gallery_id":[],"footnotes":""},"categories":[80],"tags":[457,193,458],"class_list":["post-19846","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-huong-dan-tai-lieu","tag-dvwa","tag-sophos","tag-web-application-firewall","entry","has-media"],"_links":{"self":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts\/19846","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/comments?post=19846"}],"version-history":[{"count":1,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts\/19846\/revisions"}],"predecessor-version":[{"id":20095,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts\/19846\/revisions\/20095"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/media\/20127"}],"wp:attachment":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/media?parent=19846"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/categories?post=19846"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/tags?post=19846"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}