WebGoat

From Embedded Lab Vienna for IoT & Security
Jump to navigation Jump to search

Summary

This is a tutorial and info site on the OWASP's vulnerable web application WebGoat.

Requirements

  • Operating system: Kali Linux

Description

WebGoat is a deliberately insecure web application maintained by OWASP designed to teach web application security lessons. It is a demonstration of common server-side application flaws. The exercises are intended to be used by people to learn about application security and penetration testing techniques.[1]

Installation Instructions

  • Run via Docker
sudo apt install docker.io
sudo docker run -it -p 127.0.0.1:80:8888 -p 127.0.0.1:8080:8080 -p 127.0.0.1:9090:9090 -e TZ=Europe/Amsterdam webgoat/goatandwolf:v8.2.2

Access

  • Web goat

To gain access to the lessons and challenges, you need to register.

References

  1. WebGoat Github, WebGoat, 2022, accessed on: 08.01.2022. [Online]. Available: https://github.com/WebGoat/WebGoat