DEV Community

Aslan Dukaev
Aslan Dukaev

Posted on

Hack Rails with vulnerabilities by OWASP

#ruby #rails #hack #security

Alt Text

I found the rails app includes
XSS, CSRF, SQL Injection vulnerabilities

Getting Started with Docker 

git clone https://github.com/OWASP/railsgoat
cd railsgoat

docker-compose build
docker-compose run web rails db:setup
docker-compose up

Open localhost:3000

Analyze source code and try to find vulnerabilities.
For hints use wiki and brakeman

Happy Hacking!

Follow me on GitHub

Top comments (0)

Read next

lukehinds profile image

Understanding SafeTensors: A Secure Alternative to Pickle for ML Models

Luke Hinds -

jimmymcbride profile image

I Survived a Massive DDoS Attack and Made My Server Bulletproof

Jimmy McBride -

evergreat profile image

Web Development Legal Rules!

Parjad Minooei -

yilialinn profile image

Announcing Integration between Apache APISIX and open-appsec WAF

Yilia -