在线时间:8:00-16:00
迪恩网络APP
随时随地掌握行业动态
扫描二维码
关注迪恩网络微信公众号
开源软件名称:OWASP/NodeGoat开源软件地址:https://github.com/OWASP/NodeGoat开源编程语言:HTML 60.5%开源软件介绍:NodeGoatBeing lightweight, fast, and scalable, Node.js is becoming a widely adopted platform for developing web applications. This project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them. Getting StartedOWASP Top 10 for Node.js web applications: Know it!Tutorial Guide explaining how each of the OWASP Top 10 vulnerabilities can manifest in Node.js web apps and how to prevent it. Do it!A Vulnerable Node.js App for Ninjas to exploit, toast, and fix. You may like to set up your own copy of the app to fix and test vulnerabilities. Hint: Look for comments in the source code. Default user accountsThe database comes pre-populated with these user accounts created as part of the seed data -
How to Set Up Your Copy of NodeGoatOPTION 1 - Run NodeGoat on your machine
Customizing the Default Application ConfigurationBy default the application will be hosted on port 4000 and will connect to a MongoDB instance at localhost:27017. To change this set the environment variables Other settings can be changed by updating the config file. OPTION 2 - Run NodeGoat on DockerThe repo includes the Dockerfile and docker-compose.yml necessary to set up the app and db instance, then connect them together.
OPTION 3 - Deploy to HerokuThis option uses a free ($0/month) Heroku node server. Though not essential, it is recommended that you fork this repository and deploy the forked repo. This will allow you to fix vulnerabilities in your own forked version, then deploy and test it on Heroku.
Report bugs, Feedback, CommentsContributingPlease Follow the contributing guide Code Of Conduct (CoC)This project is bound by a Code of Conduct. ContributorsHere are the amazing contributors to the NodeGoat project. Supports
LicenseCode licensed under the Apache License v2.0. |
2023-10-27
2022-08-15
2022-08-17
2022-09-23
2022-08-13
请发表评论