[GPC] Fwd: (what is the status of OWASP Mutillidae) Fwd: [Owasp-leaders] Is there a PHP equivalent to Webgoat?

Mon Sep 7 15:26:38 EDT 2009

The text I have been using:

“Note: To create wiki account <https://www.owasp.org/index.php/Special:Userlogin> s, please see here <https://www.owasp.org/index.php/Tutorial>  and here <http://www.owasp.org/index.php/User:Mtesauro>  how to do it and here <http://www.owasp.org/index.php/Category:OWASP_Live_CD_Project#tab=Project_Identification>  an example of how it will be used.”

Paulo Coimbra,

 <https://www.owasp.org/index.php/Main_Page> OWASP Project Manager

From: global-projects-committee-bounces at lists.owasp.org [mailto:global-projects-committee-bounces at lists.owasp.org] On Behalf Of Dinis Cruz
Sent: segunda-feira, 7 de Setembro de 2009 20:07
To: global-projects-committee at lists.owasp.org
Subject: [GPC] Fwd: (what is the status of OWASP Mutillidae) Fwd: [Owasp-leaders] Is there a PHP equivalent to Webgoat?

Before I respond to Adrian, are there a couple good examples (or even guidelines) for what each WIKI 'user page' should look like? (i.e. what information should be there?)

Dinis Cruz

Begin forwarded message:

From: Adrian Crenshaw <irongeek at irongeek.com>
Date: 7 September 2009 16:10:14 GMT+01:00
To: dinis cruz <dinis.cruz at owasp.org>
Subject: Re: (what is the status of OWASP Mutillidae) Fwd: [Owasp-leaders] Is there a PHP equivalent to Webgoat?

I'm pretty much the only guy working on it. What needs to be updated on my profile page?

Thanks,
Adrian

On Mon, Sep 7, 2009 at 5:22 AM, dinis cruz <dinis.cruz at owasp.org> wrote:

Hi Adrian , Is multillidae an OWASP project?

http://www.irongeek.com/i.php?page=security/mutillidae-deliberately-vulnerable-php-owasp-top-10

a lots doesn't seem to be happening at http://www.owasp.org/index.php/Category:OWASP_Mutillidae

Also, Adrian, can you update: http://www.owasp.org/index.php/User:Irongeek

Thanks

Dinis

---------- Forwarded message ----------
From: Vlatko Kosturjak <kost at linux.hr>
Date: 2009/9/4
Subject: Re: [Owasp-leaders] Is there a PHP equivalent to Webgoat?
To: owasp-leaders at lists.owasp.org

Actually, IronGeek has interesting list of vulnerable web applications
(nice to check);
http://www.irongeek.com/i.php?page=security/deliberately-insecure-web-applications-for-learning-web-app-security

Hope it helps,

Adrian Crenshaw wrote:
> This may be what you want:
> http://www.irongeek.com/i.php?page=security/mutillidae-deliberately-vulnerable-php-owasp-top-10
>
> On Fri, Sep 4, 2009 at 4:30 PM, Michael Menefee <mmenefee at gmail.com
> <mailto:mmenefee at gmail.com>> wrote:
>
> Although not exactly the same, there are many deliberately insecure
> testing sites out there, like the hacme series from Foundstone:
>
> http://www.foundstone.com/us/resources-free-tools.asp
> Andrew Hay wrote:
>> I¹ve had several people ask me if such a beast exists.
_______________________________________________
OWASP-Leaders mailing list
OWASP-Leaders at lists.owasp.org <mailto:OWASP-Leaders at lists.owasp.org>
https://lists.owasp.org/mailman/listinfo/owasp-leaders
_______________________________________________
OWASP-Leaders mailing list
OWASP-Leaders at lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-leaders

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/mailman/private/global-projects-committee/attachments/20090907/3d1019c0/attachment.html 