Difference between revisions of "WebGoat User Guide Objectives"

From OWASP
Jump to: navigation, search
 
m (Corrected wording)
 
Line 3: Line 3:
 
Having followed the testing techniques within WebGoat, a tester should be able to:
 
Having followed the testing techniques within WebGoat, a tester should be able to:
 
* Understand the high-level interaction processes within a web-application
 
* Understand the high-level interaction processes within a web-application
* Determine information within client visible data which data which could be useful in an attack
+
* Determine information in client visible data that can be useful in an attack
 
* Identify and understand data and user interactions which may expose the application to attack
 
* Identify and understand data and user interactions which may expose the application to attack
 
* Perform tests against those interactions to expose flaws in their operation
 
* Perform tests against those interactions to expose flaws in their operation

Latest revision as of 06:13, 8 September 2008

WebGoat User Guide Table of Contents

Having followed the testing techniques within WebGoat, a tester should be able to:

  • Understand the high-level interaction processes within a web-application
  • Determine information in client visible data that can be useful in an attack
  • Identify and understand data and user interactions which may expose the application to attack
  • Perform tests against those interactions to expose flaws in their operation
  • Execute attacks against the application to demonstrate and exploit vulnerabilities