nerdexam
EC-Council

312-50V10 · Question #544

Which Open Web Application Security Project (OWASP) implements a web application full of known vulnerabilities?

The correct answer is B. WebGoat. OWASP WebGoat is a deliberately insecure web application designed to teach developers and security professionals about common web vulnerabilities in a safe, legal environment.

Hacking Web Applications

Question

Which Open Web Application Security Project (OWASP) implements a web application full of known vulnerabilities?

Options

  • AWebBugs
  • BWebGoat
  • CVULN_HTML
  • DWebScarab

How the community answered

(27 responses)
  • B
    93% (25)
  • C
    4% (1)
  • D
    4% (1)

Why each option

OWASP WebGoat is a deliberately insecure web application designed to teach developers and security professionals about common web vulnerabilities in a safe, legal environment.

AWebBugs

WebBugs is not an OWASP project - it refers to tiny web tracking images used to monitor user behavior, not a vulnerable application platform.

BWebGoatCorrect

WebGoat is an official OWASP project that provides a realistic, intentionally vulnerable Java-based web application. It includes lessons on SQL injection, XSS, broken authentication, and many other OWASP Top 10 vulnerabilities, allowing users to practice exploitation techniques safely.

CVULN_HTML

VULN_HTML is not a recognized OWASP project or tool in the security testing ecosystem.

DWebScarab

WebScarab was an OWASP HTTP proxy/interceptor tool used for analyzing web traffic, not an intentionally vulnerable application for practice.

Concept tested: OWASP WebGoat intentionally vulnerable web application

Source: https://owasp.org/www-project-webgoat/

Topics

#WebGoat#OWASP#vulnerable web application#security training

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice