Description: WebGoat is a J2EE web application, created by the OWASP community to provide a teaching environment for webapplication security.
It is a deliberately insecure program, where you must go through a number of lessons. In each lesson, you learn about a new sort of vulnerability, and in the same moment get a hands-on try at exploiting that vulnerability.
It's completely free, so that's a big up from the start.
Tags: WebGoat , TTP Splitting and Cache Poisining , Bypass Client Side JavaScript Validation , Bypass a Role Based Access Control Scheme , Exploit the Forgot Password Page , Spoof an Authentication Cookie ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.