312-50V10 · Question #544
Which Open Web Application Security Project (OWASP) implements a web application full of known vulnerabilities?
The correct answer is B. WebGoat. OWASP WebGoat is a deliberately insecure web application designed to teach developers and security professionals about common web vulnerabilities in a safe, legal environment.
Question
Which Open Web Application Security Project (OWASP) implements a web application full of known vulnerabilities?
Options
- AWebBugs
- BWebGoat
- CVULN_HTML
- DWebScarab
How the community answered
(27 responses)- B93% (25)
- C4% (1)
- D4% (1)
Why each option
OWASP WebGoat is a deliberately insecure web application designed to teach developers and security professionals about common web vulnerabilities in a safe, legal environment.
WebBugs is not an OWASP project - it refers to tiny web tracking images used to monitor user behavior, not a vulnerable application platform.
WebGoat is an official OWASP project that provides a realistic, intentionally vulnerable Java-based web application. It includes lessons on SQL injection, XSS, broken authentication, and many other OWASP Top 10 vulnerabilities, allowing users to practice exploitation techniques safely.
VULN_HTML is not a recognized OWASP project or tool in the security testing ecosystem.
WebScarab was an OWASP HTTP proxy/interceptor tool used for analyzing web traffic, not an intentionally vulnerable application for practice.
Concept tested: OWASP WebGoat intentionally vulnerable web application
Source: https://owasp.org/www-project-webgoat/
Topics
Community Discussion
No community discussion yet for this question.