[Owasp-leaders] webapps for security training

Eoin eoin.keary at owasp.org
Mon Jun 25 14:52:06 UTC 2012


Does this help?
http://blog.taddong.com/2011/10/hacking-vulnerable-web-applications.html?m=1


Eoin Keary
Owasp Global Board
+353 87 977 2988


On 25 Jun 2012, at 15:42, Antonio Fontes <antonio.fontes at owasp.org> wrote:

> Colin,
> 
> Yes, Gruyere is very interesting for trainings, I used it regularly. But
> it still lacks that "real-world" feeling that seems to be necessary when
> the audience is not that technical.
> 
> DVWA -> already in the list :)
> 
> Thank you,
> Antonio
> 
> 
> On 25.06.2012 16:19, Colin Watson wrote:
>> Antonio
>> 
>> I've used Gruyere quite a lot recently:
>> 
>>   http://google-gruyere.appspot.com/
>> 
>> There are online instances, and you can download the code. Lots of
>> good vulnerabilities, and some that are harder to find.
>> 
>> Also had success using DVWA with trainees:
>> 
>>  http://www.dvwa.co.uk/
>> 
>> Colin
>> 
>> On 25 June 2012 14:19, Antonio Fontes <antonio.fontes at owasp.org> wrote:
>>> 
>>> Hello leaders,
>>> 
>>> Any pointers to *recent* open source web applications that you
>>> successfully integrated (or believe they would integrate) well in a
>>> secure coding training? Any technologies are welcomed, and not
>>> necessarily "security-oriented" apps like Webgoat.
>>> 
>>> Antonio
>>> 
>>> 
>>> --
>>> OWASP Switzerland, board member
>>> OWASP Geneva, chapter leader
>>> skype: antonio.fontes
>>> 
>>> _______________________________________________
>>> OWASP-Leaders mailing list
>>> OWASP-Leaders at lists.owasp.org
>>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders


More information about the OWASP-Leaders mailing list