This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "WebGoat User Guide Objectives"
From OWASP
Weilin Zhong (talk | contribs) |
m (Corrected wording) |
||
| Line 3: | Line 3: | ||
Having followed the testing techniques within WebGoat, a tester should be able to: | Having followed the testing techniques within WebGoat, a tester should be able to: | ||
* Understand the high-level interaction processes within a web-application | * Understand the high-level interaction processes within a web-application | ||
| − | * Determine information | + | * Determine information in client visible data that can be useful in an attack |
* Identify and understand data and user interactions which may expose the application to attack | * Identify and understand data and user interactions which may expose the application to attack | ||
* Perform tests against those interactions to expose flaws in their operation | * Perform tests against those interactions to expose flaws in their operation | ||
Latest revision as of 11:13, 8 September 2008
WebGoat User Guide Table of Contents
Having followed the testing techniques within WebGoat, a tester should be able to:
- Understand the high-level interaction processes within a web-application
- Determine information in client visible data that can be useful in an attack
- Identify and understand data and user interactions which may expose the application to attack
- Perform tests against those interactions to expose flaws in their operation
- Execute attacks against the application to demonstrate and exploit vulnerabilities
