WebGoat Vulnerability List
521 views
Skip to first unread message
jose luis castañon
Jun 18, 2018, 12:48:44 PM6/18/18
to OWASP ZAP Developer Group
Hi everybody, is there any list of vulnerabilities in WebGoat.
I have done a few scans with ZAP and i was wondering if i found all of them.
Thanks in advance.
psiinon
Jun 19, 2018, 3:36:51 AM6/19/18
to OWASP ZAP Developer Group
Maybe a question for the WebGoat project?
Its worth noting that in while some types of web app vulnerabilities can be found using automated scanning, many are only really discoverable using manual testing.
If you've just used the ZAP active and passive scanners then its very unlikely that you will have found all of the vulnerabilities.
Cheers,
Simon
jose luis castañon
Jun 19, 2018, 4:54:20 AM6/19/18
to OWASP ZAP Developer Group
Ok, thanks for the info.
jose luis castañon
Jun 19, 2018, 5:03:32 AM6/19/18
to OWASP ZAP Developer Group
Sorry, do you know where is the group located, i cannot find them.
Thanks
El martes, 19 de junio de 2018, 9:36:51 (UTC+2), psiinon escribió:
thc...@gmail.com
Jun 19, 2018, 5:47:49 AM6/19/18
to zaproxy...@googlegroups.com
They seem to have an OWASP mailing list:
https://lists.owasp.org/mailman/listinfo/owasp-webgoat
Best regards.
https://lists.owasp.org/mailman/listinfo/owasp-webgoat
Best regards.
Reply all
Reply to author
Forward
0 new messages