Web Security Dojo v1.0 released
Web Security Dojo is a turnkey web application security lab with tools,
targets, and training materials built into a Virtual Machine(VM).
It is ideal for both self-instruction and training classes since
everything is pre-configured and no external network connection is
needed. All tools and targets are configured to use non-conflicting
ports and a Firefox proxy switcher is set up to match.
Web Security Dojo is an open source project built on Ubuntu and hosted
at SourceForge. It is available in three flavors: a Virtualbox VM, VMWare VM, and a build script which can be used on a standard Ubuntu 9.10 install to produce the Dojo.
Collaboration and contributions are welcomed.
- OWASP WebGoat
- Damn Vulnerable Web App
- Hacme Casino
- OWASP InsecureWebApp
- custom PHP scripts including REST and JSON labs
- Burp Suite (free version)[Thanks to Portswigger for permission to
- OWASP Skavenger
- OWASP Dirbuster
- helpful Firefox add-ons
For a quick start grab the VM from http://dojo.mavensecurity.com and
read the included Readme file and/or watch the intro video at
Tool Submitted by Steven Pinkham from MavenSecurity.com
|Penetration testing & Ethical Hacking||
|Web Security Dojo|