[Owasp-leaders] Is there a PHP equivalent to Webgoat?

Adrian Crenshaw irongeek at irongeek.com
Fri Sep 4 16:34:49 EDT 2009


This may be what you want:
http://www.irongeek.com/i.php?page=security/mutillidae-deliberately-vulnerable-php-owasp-top-10

On Fri, Sep 4, 2009 at 4:30 PM, Michael Menefee <mmenefee at gmail.com> wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Although not exactly the same, there are many deliberately insecure
> testing sites out there, like the hacme series from Foundstone:
>
> http://www.foundstone.com/us/resources-free-tools.asp
>
>
>
>
> Andrew Hay wrote:
> > I¹ve had several people ask me if such a beast exists.
> >
> >
> >
> > ------------------------------------------------------------------------
> >
> > _______________________________________________
> > OWASP-Leaders mailing list
> > OWASP-Leaders at lists.owasp.org
> > https://lists.owasp.org/mailman/listinfo/owasp-leaders
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.10 (MingW32)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
>
> iQEcBAEBAgAGBQJKoXjJAAoJENyHCSRmgy8NMnQIALzaAfNUyfv87+Z2pIx6F83I
> ahXDfora6o68V8UwoJlZAT7RLW7lt9g8MNWu5fh8XeVp8PVfzZYVXaVhNjnxQunE
> 4boYk62SkE6Z7lcefpMdqqPIlBFN+C9pTAvb4EY7yMtWhmHka64kFN66CLf3ZvcK
> hCsY8iRjGviEOu0KKwYLGIw7g12Aq8mHYfxrlp6ad2H0MVBcviFqKKHCKIIgRatq
> Q9/9OSxFQAEm6ad0iRCUTkArnANqD0HVSO/L5Ooj9zg7QCk+gEkjRTXdA8ZfoKSi
> N6QUlcwDuzzXQI/X1jvMxA9l90vl3TJXqrVWI3ym2mNn1w6IZr70dcs/uyDrwU0=
> =MZf9
> -----END PGP SIGNATURE-----
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-leaders/attachments/20090904/a12bd344/attachment.html 


More information about the OWASP-Leaders mailing list