
	Home > Demo: Using WebGoat, a free software testing tool

Webgoat Video Tutorial:

EMAIL THIS

Demo: Using WebGoat, a free software testing tool

01 Oct 2009 | SearchSoftwareQuality

Software quality news and advice

Digg This! StumbleUpon Del.icio.us

There has been a surge in requests for detailed descriptions and use demos on free online software security testing tools. This video demo describes uses of WebGoat, a free tool that has a number of useful features that can test the security of an application and also teach testers best practices and skills to use in their testing.

What is WebGoat?
WebGoat is a free online tool used to test and uncover application flaws that might otherwise go unnoticed. Issues with SQL injection and cross-site scripting (XSS) often fly under the security radar and issues are often discovered too late.

How can I use WebGoat to improve the quality, compatibility and security of my application?
In this introductory video (located below)Web 2.0 application security expert Kevin Beaver explains the finer points and best features of WebGoat, which he started in Spotting rich Internet application security flaws with WebGoat the popularity of the tip led us to pursue "hands on" ways for Kevin to instruct on how to use WebGoat, where to get it as well as the advantages of the tool. Aided by the luxury of streaming video multimedia, use this page as launch pad to learning about WebGoat.

How to secure application passwords, application hacking concerns
In the second lesson on WebGoat, expert Kevin Beaver shows testers how basic application oversights can cost them dearly, what happens when password weaknesses and basic hacking concerns are not addressed? Learn how too overcome hackers endless attempts on your application in this helpful video tip.

Additional resources for securing Web 2.0 apps

Web 2.0 application security troubleshooting, testing tutorial
From beating login problems to hacking your own applications, this multimedia how-to collection covers all security topics in Web 2.0 and rich Internet applications led by expert Kevin Beaver.

Web 2.0, RIAs push load testing to the max
Rising use of Web 2.0 and Rich Internet Applications and new virtual and cloud environments pose the software load testing.

About the author: Kevin Beaver is an independent information security consultant, speaker and expert witness with Atlanta-based Principle Logic, LLC. He has over 20 years experience in the industry and specializes in performing independent information security assessments revolving around compliance and information risk management. Kevin has authored/co-authored seven books on information security including the ethical hacking books, Hacking for Dummies and Hacking Wireless Networks for Dummies (Wiley). He's also the creator of the Security On Wheels IT security audio books.

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Software testing tools and frameworks
	Performance testing tools - Commercial, less expensive and free
	Software Testing Ezines
	New IBM Rational, Tivoli integrated tools pair development with IT
	STPCon: Do reality checks on performance test products, panelists advise
	Getting answers about OpenSTA script problems
	Defining core software regression tests
	Selecting the best tool for stress and load testing
	Required prerequisites for performance testing
	Surgient 7's self-provisioning promises software testers quick IT resource access
	ALM: Best of breed vs. complete systems

Software security testing tools

Put a stop to software espionage by watermarking source code

How to make your software tamperproof

How can I tell if my software security has been breached?

Lesser-known free software testing tools testers should try

Rich Internet applications security testing checklist

Finding cross-site scripting (XSS) application flaws checklist

Webgoat Tutorial

Retaking command of your hacked software

Identifying whether or not your site or software has been hacked

Selecting the best tool for stress and load testing

Software testing and quality assurance (QA) fundamentals

How to deal with iteration issues in Agile

Five steps to fostering better software tester and QA results

Software Testing: New software testing technologies bring new challenges

Testing strategies for complex environments

Astronaut's STPCon advice: Teamwork delivers "The Right Stuff"

How to make your software tamperproof

Software consortium seeks standard quality metrics

Seven steps for a quality change and configuration management program

Winning responses to "Why is QA always the bottleneck?"

Where to find good methodology guides for software testing

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

JUnit (SearchSoftwareQuality.com)

NUnit (SearchSoftwareQuality.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

Software Quality Testing - Research and White Papers

SEARCH

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2006 - 2009, TechTarget \| Read our Privacy Policy