ÇØÅ·À» Ãë¹Ì·Î, Ãë¹Ì·Î ÇØÅ·.
ÀüÀÚÃ¥, Á¾ÀÌÃ¥(www.bookk.co.kr/store)°ú ÀÎÇÁ·± °Á·εµ ¸¸³ªº¼ ¼ö ÀÖ´Ù.
¡¡
ÃÑ µÎ±ÇÀ¸·Î ±¸¼ºµÇ¾î À¥ ÇØÅ·ÀÇ Å¬·¡½Ä ¿ö°ÔÀÓÀÎ WebGoatÀÇ ÄÜÅÙÃ÷¸¦ ´Ù·ç¸ç, óÀ½ºÎÅÍ ³¡±îÁö ¸ðµç ·¹½¼°ú 縰Áö¸¦ ¿Ï¿ª ¼ö·Ï ¹× Ç®ÀÌÇÏ¿´´Ù. ½Ç½À ȯ°æ ±¸ÃàºÎÅÍ ½ÃÀÛÇÏ¿© 縰Áö Ç®ÀÌ¿¡ ÇÊ¿äÇÑ Åø°ú µ¥ÀÌÅ͵µ ÀüºÎ Á¦°øÇÏ°í ÀÖ´Ù.
# ÀúÀÚ ¼Ò°³
# ¾È³» ¹× °¨»çÀÇ ¸»¾¸
# µ¶ÀÚ Èıâ
¡¡
01. Cross-Site Scripting(XSS)
1. Cross Site Scripting
¡¡
02. Access Control Flaws
1. Insecure Direct Object References
2. Missing Function Level Access Control
¡¡
03. Insecure Communication
1. Insecure Login
¡¡
04. Insecure Deserialization
1. Insecure Deserialization
¡¡
05. Request Forgeries
1. Cross-Site Request Forgeries
¡¡
06. Vulnerable Components
1. Vulnerable Components
¡¡
07. Client Side
1. Bypass front-end restrictions
2. Client side filtering
3. HTML tampering
¡¡
08. Challenges
1. WebGoat Challenge
2. Admin lost password
3. Without password
4. Creating a new account
5. Admin password reset
6. Without account
