-
Notifications
You must be signed in to change notification settings - Fork 678
OWASP RailGoat Idea List
Al Snow edited this page Feb 19, 2018
·
7 revisions
RailsGoat is a great framework for learning about OWASP Top 10 2013 using a vulnerable version of the Ruby on Rails (versions 3 to 5), as well as some "extras" that the initial project contributors felt worthwhile to share. This project is designed to educate both developers, as well as security professionals. Feel free to check out the Railsgoat Github site for more details. If you have an idea that is not on this list then don't worry, you can still submit it.
- Wonderful experience for Student Developers, Mentors, and Technical Advisors
- A new feature that makes RailsGoat even better
- Code that conforms to our Development Rules and Guidelines
- Student Developers
- Have a look at the RailsGoat https://github.com/OWASP/railsgoat/blob/master/README.md file, especially the 'Getting Started' section. We like to see student developers who have already contributed to RailsGoat, so try fixing one of the bugs.
- RailsGoat is written in Ruby and Ruby-on-Rails, so a good knowledge of this language ecosystem is recommended. Some knowledge of application security would be useful, but not essential.
- Frank Rietta - OWASP RailsGoat Mentor
- Ken Johnson - OWASP RailsGoat "Technical Advisor, potentially mentor"
- Al Snow - OWASP RailsGoat Project Coordinator
Sections are divided by their OWASP Top Ten label (A1-A10) and marked as R4 and R5 for Rails 4 and 5.