One of the ways to learn how to write secure software is to learn how to attack software. OWASP knows this, which is why they built Juice Shop. It's an intentionally in-secure web site for people to try to hack with a built in scoreboard to track your progress. Not only is it educational but it's really fun :)
There's even a guide doc you can read that will help teach you how to do different attacks and walkthroughs for challenges you cannot figure out on your own. I recently did some security training with Juice Shop being used as the first site to hack, and everyone who took part thought it was great.
Serial podcast creator and .NET Core maniac.
Can often be found talking about everything and nothing on one of the many podcasts that he produces (only one of them is about .NET Core, honest)
Location
Leeds, UK
Education
Computer Science with Games Development - BSc
Work
.NET Development Contractor; Podcast host, producer and editor
One of the ways to learn how to write secure software is to learn how to attack software. OWASP knows this, which is why they built Juice Shop. It's an intentionally in-secure web site for people to try to hack with a built in scoreboard to track your progress. Not only is it educational but it's really fun :)
There's even a guide doc you can read that will help teach you how to do different attacks and walkthroughs for challenges you cannot figure out on your own. I recently did some security training with Juice Shop being used as the first site to hack, and everyone who took part thought it was great.
github.com/bkimminich/juice-shop
Yeah, juice-shop is a little like Tory Hunt's Hack Yourself First website.
Both are definitely worth trying out, for sure.