Damn Vulnerable Web App (DVWA)

Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that comes with a set of deliberate vulnerablities built into it.

I can across it while reading through some of the NY Poly courseware.

DVWA is similair to the Web Goat application I mentioned in an earlier post. DVWA’s aims ‘are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment.’

While working on DVWA, I came across this superb set of tutorials on the computersecuritystudent.com website

What’s particularly impressive about these tutorials is that they integrate DVWA with BackTrack, Burp Suite, John the Ripper and a number of other security testing tools.

You’d pay quite a lot of money to attend a training course and get access to this kind of information. These tutorials are laid out brialliantly, easy to follow – and they’re free!

Definitely worth checking out.


2 responses to “Damn Vulnerable Web App (DVWA)

  1. Hmm it looks like your website ate my first comment (it was extremely long) so I guess I’ll just sum it up what I submitted and say,
    I’m thoroughly enjoying your blog. I as well am an aspiring
    blog writer but I’m still new to everything. Do youu have any suggestions for inexperienced blog
    writers? I’d certainly appreciate it.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s