Test your vulnerability-finding skills on an interesting learning platform

Aug 13, 2013 21:01 GMT  ·  By

If you’re passionate about IT security and want to learn about finding vulnerabilities in web applications, OWASP Bricks is an excellent learning platform. It’s free and it’s open source.

Developed using PHP and MySQL, Bricks is split into three main sections: login pages, file upload pages and content pages.

Each of these sections contains various security holes which users must identify. For instance, on the file upload pages, users have to find a way to bypass the verification mechanism, or upload PHP backdoors and gain complete access to the server.

If you don’t manage to solve the challenges, videos are available to show you how it can be done.

In the latest version of the application, a new challenge has been added to the login pages section.

Complete documentation and instruction videos are available here and here.

Download OWASP Bricks