DEV Community

Aslan Dukaev
Aslan Dukaev

Posted on

Hack Rails with vulnerabilities by OWASP

Alt Text

I found the rails app includes
XSS, CSRF, SQL Injection vulnerabilities

Getting Started with Docker

git clone https://github.com/OWASP/railsgoat
cd railsgoat

docker-compose build
docker-compose run web rails db:setup
docker-compose up

Open localhost:3000

Analyze source code and try to find vulnerabilities.
For hints use wiki and brakeman

Happy Hacking!

Follow me on GitHub

Top comments (0)