wavsep

A vulnerable web application designed to help assessing the features, quality and accuracy of web application vulnerability scanners.

This evaluation platform contains a collection of unique vulnerable web pages that can be used to test the various properties of web application scanners.

Visit WAVSEP homepage to learn more:
https://code.google.com/p/wavsep/

The project includes the following test cases:

Path Traversal/LFI: 816 test cases (GET & POST)
Remote File Inclusion (XSS via RFI): 108 test cases (GET & POST)
Reflected XSS: 66 test cases, implemented in 64 jsp pages (GET & POST)
Error Based SQL Injection: 80 test cases, implemented in 76 jsp pages (GET & POST)
Blind SQL Injection: 46 test cases, implemented in 44 jsp pages (GET & POST)
Time Based SQL Injection: 10 test cases, implemented in 10 jsp pages (GET & POST)

Project Samples

Project Activity

See All Activity >

License

GNU General Public License version 3.0 (GPLv3)

Follow wavsep

wavsep Web Site

Other Useful Business Software

Client Management Software for Small Businesses | HoneyBook

Manage projects, book clients, send invoices, and get paid - all on HoneyBook.

HoneyBook helps creative entrepreneurs and freelancers book more clients, manage projects and get paid all in one place. With their business management software, you can automate your busy work and stay on top of all your to-dos, saving time and money so you can grow your business. Its like your own personal assistant.

Learn More

Rate This Project

User Reviews

Be the first to post a review of wavsep!

Additional Project Details

Operating Systems

Linux, Windows

Languages

English

Intended Audience

Education, Developers, Quality Engineers, Testers, Security Professionals, Security

User Interface

Web-based

Programming Language

JSP, Java

Database Environment

JDBC, MySQL, Other file-based DBMS

Registered

2014-01-29

Similar Business Software

VulnSign

VulnSign is an online vulnerability scanner that is fully automated, customer-orient configurable and has advanced features. VulnSign can scan any type of web application, regardless of the technology it was built with. It uses a Chrome based crawling engine and can identify vulnerabilities in...

See Software
Probely

Probely is a web vulnerability scanner for agile teams. It provides continuous scanning of web applications and lets you efficiently manage the lifecycle of the vulnerabilities found, in a sleek and intuitive web interface. It also provides simple instructions on how to fix the...

See Software
WebScanner

DefenseCode WebScanner is a DAST (Dynamic Application Security Testing, BlackBox Testing) solution for comprehensive security audits of active web applications (websites). WebScanner will test a website’s security by carrying out a large number of attacks using the most advanced techniques, just...

See Software