{"id":1053,"date":"2015-06-17T08:42:03","date_gmt":"2015-06-17T08:42:03","guid":{"rendered":"http:\/\/www.pir8geek.com\/?p=1053"},"modified":"2015-06-17T08:42:03","modified_gmt":"2015-06-17T08:42:03","slug":"web-security-dojo-stand-alone-training-environment-for-web-application-security","status":"publish","type":"post","link":"https:\/\/www.jameseduard.com\/?p=1053","title":{"rendered":"Web Security Dojo &#8211; Stand-alone Training Environment for Web Application Security"},"content":{"rendered":"<p><strong>Web Security Dojo<\/strong> is a preconfigured, stand-alone training environment for Web Application Security. Virtualbox and VMware versions for download. See &#8220;View all files&#8221; for VMware version.<br \/>\n<strong>Features:<\/strong><\/p>\n<ul>\n<li class=\"feature\">Ethical hacking sandbox<\/li>\n<li class=\"feature\">Pre-configured vulnerable targets<\/li>\n<li class=\"feature\">Common web hacking tools<\/li>\n<li class=\"feature\">Training materials and user guides for some targets<\/li>\n<\/ul>\n<p>&nbsp;<br \/>\n<strong>What is Web Security Dojo?<\/strong><br \/>\nVarious web application security testing tools and vulnerable web applications were added to a clean install of Ubuntu v10.04.2, which is patched with the appropriate updates and VM additions for easy use.<br \/>\nThe Web Security Dojo is for learning and practicing web app security testing techniques. It is ideal for self-teaching and skill assessment, as well as training classes and conferences since it does not need a network connection. The Dojo contains everything needed to get started \u2013 tools, targets, and documentation.<br \/>\n&nbsp;<\/p>\n<div><b><strong>Web Security Dojo\u00a0<\/strong>Feature Overview:<\/b><\/div>\n<div><\/div>\n<div><b>Targets include<\/b>:<\/div>\n<ul>\n<li>OWASP\u2019s WebGoat<\/li>\n<li>Google\u2019s Gruyere<\/li>\n<li>Damn Vulnerable Web App<\/li>\n<li>Hacme Casino<\/li>\n<li><span class=\"caps\">OWASP<\/span> InsecureWebApp<\/li>\n<li>w3af\u2019s test website<\/li>\n<li>simple training targets by Maven Security (including <span class=\"caps\">REST<\/span> and <span class=\"caps\">JSON<\/span>)<\/li>\n<\/ul>\n<div>\n<div><\/div>\n<\/div>\n<div><b>Tools<\/b>: (starred = new this version)<\/div>\n<ul>\n<li>Burp Suite (free version)<\/li>\n<li>w3af<\/li>\n<li>sqlmap<\/li>\n<li>arachni *<\/li>\n<li>metasploit<\/li>\n<li>Zed Attack Proxy *<\/li>\n<li><span class=\"caps\">OWASP<\/span> Skavenger<\/li>\n<li><span class=\"caps\">OWASP<\/span> Dirbuster<\/li>\n<li>Paros<\/li>\n<li>Webscarab<\/li>\n<li>Ratproxy<\/li>\n<li>skipfish<\/li>\n<li>websecurify<\/li>\n<li>davtest<\/li>\n<li>J-Baah<\/li>\n<li>JBroFuzz<\/li>\n<li>Watobo *<\/li>\n<li><span class=\"caps\">RATS<\/span><\/li>\n<li>helpful Firefox add-ons<\/li>\n<\/ul>\n<p>You can\u00a0<strong>Download<\/strong> Web Security Dojo from\u00a0<a href=\"http:\/\/sourceforge.net\/projects\/websecuritydojo\/files\/\">http:\/\/sourceforge.net\/projects\/websecuritydojo\/files\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Web Security Dojo is a preconfigured, stand-alone training environment for Web Application Security. Virtualbox and VMware versions for download. See &#8220;View all files&#8221; for VMware version. Features: Ethical hacking sandbox Pre-configured vulnerable targets Common web hacking tools Training materials and user guides for some targets &nbsp; What is Web Security Dojo? Various web application security<\/p>\n","protected":false},"author":1,"featured_media":1054,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[431,278],"tags":[484,485,313,486,487,488],"class_list":["post-1053","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-vulnerability-analysis","category-web-application","tag-burp-suite","tag-owasp","tag-pentesting","tag-w3af","tag-web-apps","tag-websecurify"],"_links":{"self":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts\/1053","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1053"}],"version-history":[{"count":0,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts\/1053\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1053"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1053"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1053"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}