[GPC] (what is the status of OWASP Mutillidae) Fwd: [Owasp-leaders] Is there a PHP equivalent to Webgoat?

Mon Sep 7 05:22:45 EDT 2009

Hi Adrian , Is multillidae an OWASP project?

http://www.irongeek.com/i.php?page=security/mutillidae-deliberately-vulnerable-php-owasp-top-10

a lots doesn't seem to be happening at
http://www.owasp.org/index.php/Category:OWASP_Mutillidae

Also, Adrian, can you update: http://www.owasp.org/index.php/User:Irongeek

Thanks

Dinis

---------- Forwarded message ----------
From: Vlatko Kosturjak <kost at linux.hr>
Date: 2009/9/4
Subject: Re: [Owasp-leaders] Is there a PHP equivalent to Webgoat?
To: owasp-leaders at lists.owasp.org

Actually, IronGeek has interesting list of vulnerable web applications
(nice to check);
http://www.irongeek.com/i.php?page=security/deliberately-insecure-web-applications-for-learning-web-app-security

Hope it helps,

Adrian Crenshaw wrote:
> This may be what you want:
>
http://www.irongeek.com/i.php?page=security/mutillidae-deliberately-vulnerable-php-owasp-top-10
>
> On Fri, Sep 4, 2009 at 4:30 PM, Michael Menefee <mmenefee at gmail.com
> <mailto:mmenefee at gmail.com>> wrote:
>
> Although not exactly the same, there are many deliberately insecure
> testing sites out there, like the hacme series from Foundstone:
>
> http://www.foundstone.com/us/resources-free-tools.asp
> Andrew Hay wrote:
>> I¹ve had several people ask me if such a beast exists.
_______________________________________________
OWASP-Leaders mailing list
OWASP-Leaders at lists.owasp.org <mailto:OWASP-Leaders at lists.owasp.org>
https://lists.owasp.org/mailman/listinfo/owasp-leaders
_______________________________________________
OWASP-Leaders mailing list
OWASP-Leaders at lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-leaders
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/mailman/private/global-projects-committee/attachments/20090907/a1b8ee75/attachment.html 