An Introduction to Security Testing with Open Source Tools
- The Accidental Tester
- WebGoat and Firefox Web Developer
- WebScarab and Ethereal
- Next Steps
The Accidental Tester
I remember my first security bug. It was so simple, I stumbled over it accidentally. (Well, I told the very angry people who were upset with me that it was an accident.) The problem started with a developer who had left his or her user ID in a code comment on the login page for a production system. It looked something like Listing 1...