OWASP WebGoat + WebScarab
鬼仔注:看到TR那里放了几个链接,这里来个详细的,我英文很烂,就不翻译了。
一、OWASP WebScarab Project
a tool for performing all types of security testing on web applications and web services
下载地址:OWASP Source Code Center at Sourceforge
安装方法:
Linux: java -jar ./webscarab-selfcontained-[numbers].jar
Windows: double-click the installer jar file
A Mac OS X package of the latest version can usually be found on Corsaire’s download page.
You can also try the Java Web Start version, which was signed by Rogan Dawes.
阅读全文 »
