How to use OWASP Broken Web Apps to prevent vulnerabilities

OWASP Broken Web Apps allows pen testers to attack applications that are intentionally insecure to hone their skills at securing their own apps.

Mike McLaughlin, Contributor

SQL injection. Cross-site scripting. Buffer overflow. These are just some of the most common methods attackers use to compromise Web applications. But how can infosec pros know how to prevent them if they don't know how they work?

In this video demo, learn how to use the OWASP Broken Web Apps project, which allows would-be pen testers to attack applications that are intentionally insecure in order to help them hone their skills at securing their own apps.

Want more demos of free security tools? Visit our screencast page.

About the speaker:
Mike McLaughlin is a penetration tester working for First Base Technologies, an information security consultancy in the UK. Mike's daily work consists of both internal and external network based penetration testing, Web application penetration testing, and social engineering.

This was last published in August 2011

Dig Deeper on Penetration testing, ethical hacking and vulnerability assessments

SearchCloudSecurity

How to use OWASP Broken Web Apps to prevent vulnerabilities

OWASP Broken Web Apps allows pen testers to attack applications that are intentionally insecure to hone their skills at securing their own apps.

Dig Deeper on Penetration testing, ethical hacking and vulnerability assessments

Essential instruments for a pen test toolkit

dynamic application security testing (DAST)

Mobile app risks: Five things enterprises should consider

A closer look at VMware Workspace One Mobile Flows

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchCloudSecurity

Top 6 cloud security analytics use cases

McAfee: Attacks on cloud accounts up 630% during COVID-19

Use these CCSK practice questions to prep for the exam

SearchNetworking

5 principles of the network change management process

Small vendors that stand out in network automation

Top 5 VPN myths and misconceptions for IT organizations

SearchCIO

Top 2020 IT priorities hold fast amid COVID-19; spending takes hit

How CIOs can combat the IT talent shortage

How companies can ensure success working from home

SearchEnterpriseDesktop

How SCIM can automate user provisioning

Manufacturer turns to micro apps to save time

End-user productivity becomes a priority for remote work

SearchCloudComputing

Identify the Google Cloud developer tools you need

Compare the 3 types of private cloud

How to deploy Terraform code in an Azure DevOps pipeline

ComputerWeekly.com

Revealed: Surveillance camera network that covered Dominic Cummings’ lockdown travel

Coronavirus: CIOs should consider a new desktop IT strategy

Three-quarters of people expect to work remotely more often after the lockdown

Dig Deeper on Penetration testing, ethical hacking and vulnerability assessments

Essential instruments for a pen test toolkit

dynamic application security testing (DAST)

Mobile app risks: Five things enterprises should consider

A closer look at VMware Workspace One Mobile Flows

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.