WebMaven 

WebMaven (better known as Buggy Bank) is an interactive learning environment for web application security.  It emulates various security flaws for the user to find.  This will enable users to safely & legally practice web application vulnerability assessment techniques.   In addition, users can benchmark their security audit tools to ensure they perform as advertised.

You can access this page directly at http://WebMaven.MavenSecurity.com

    "Give a man an audit and he will be secure for a day.  Teach a man to audit and he will be secure for the rest of his life."
    - David Rhoades

The original code for WebMaven was developed by David Rhoades of Maven Security, and has been released under GPL.

Download WebMaven 

Source code and downloads for WebMaven can be found at Source Forge.

http://sourceforge.net/projects/webmaven

Here is an archive of v1.01 with install and user guides.

Works on Apache for Windows and Xitami for Windows
(and possibly Xitami for UNIX).

Please email us if you get WebMaven to work on any UNIX-based web servers.  It has been done, but the exact install instructions are not documented yet.

  SourceForge Logo

Getting zip file errors? Look here (Zip help at bottom of that page).
Home | Services | Events | Resources | About | Contact |
Auditing web app security since 1996

Please contact with questions or comments.
© Copyright 2001-2008 Maven Security Consulting, Inc. All rights reserved.