CSOonline

Learn to play defense by hacking these broken web apps

The best way to learn to play defense is to play offense, and the OWASP Broken Web Applications Project makes it easy for application developers, novice penetration testers, and security-curious ...
Dark Reading

'Damn Vulnerable' Training Apps Leave Vendors' Clouds Exposed

Security vendors have been leaving deliberately insecure training applications on the public Internet, and attackers have been taking advantage of them to breach their cloud environments. What's the ...