This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP iGoat Project"

From OWASP
Jump to: navigation, search
Line 28: Line 28:
 
= Status =
 
= Status =
  
The iGoat project was launched in May 2011. Version 1.2 released on 29 March 2012. Source repository and download site:
+
The iGoat project was launched in May 2011. Version 2.0 released on 26 February 2013. Source repository and download site:
  
 
http://code.google.com/p/owasp-igoat/
 
http://code.google.com/p/owasp-igoat/

Revision as of 19:29, 26 February 2013

Welcome to the iGoat OWASP project home page.

iGoat is a learning tool for iOS developers (iPhone, iPad, etc.). It was inspired by the WebGoat project, and has a similar conceptual flow to it.

As such, iGoat is a safe environment where iOS developers can learn about the major security pitfalls they face as well as how to avoid them. It is made up of a series of lessons that each teach a single (but vital) security lesson.

The lessons are laid out in the following steps:

  1. Brief introduction to the problem.
  2. Verify the problem by exploiting it.
  3. Brief description of available remediations to the problem.
  4. Fix the problem by correcting and rebuilding the iGoat program.

Step 4 is optional, but highly recommended for all iOS developers. Assistance is available within iGoat if you don't know how to fix a specific problem.

iGoat is free software, released under the GPLv3 license.

iGoat can be downloaded here: http://code.google.com/p/owasp-igoat/