Difference between revisions of "AltoroMutual"

Latest revision as of 18:29, 15 November 2018

1 URL
2 Source Code
3 Vulnerabilties
- 3.1 External resources

AltoroMutual is an vulnerable-by-design web application created by WatchFire (now AppScan Standard) as a demo test application for their BlackBox Scanner.

URL

The AltoroMutual web application can be reach on http://demo.testfire.net/ and it is commonly used to test BlackBox Scanners (IBM's AppScan Standard Evaluation version is hard-coded to only allow this website)

Source Code

The C# source code for AltoroMutual is currently not publicly available.

Vulnerabilties

There are number of vulnerabilities (as described in the OWASP Top 10) in this application.

The objective on this WIKI page is to provide detailed explantion of its exploit vector and how it could be protected (WAF or code changes)

External resources

Here are a number of resources that map the current vulnerabilities in AltoroMutual:

@@ Line 1: / Line 1: @@
+__TOC__
 AltoroMutual is an vulnerable-by-design web application created by WatchFire (now AppScan Standard) as a demo test application for their BlackBox Scanner.
@@ Line 5: / Line 7: @@
 ===Source Code===
-The C# source code for AltoroMutual is currently not publicly avaialble
+The C# source code for AltoroMutual is currently not publicly available.
 ===Vulnerabilties===
@@ Line 18: / Line 20: @@
 * http://parsonsisconsulting.wordpress.com/2010/11/24/the-power-of-02-scripting/
-[[:Category:OWASP O2 Platform]]
+[[Category:OWASP O2 Platform]]

Difference between revisions of "AltoroMutual"

Latest revision as of 18:29, 15 November 2018

URL

Source Code

Vulnerabilties

External resources

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools