October 19, 2011 at 9:59 pm #6935
October 19, 2011 at 10:21 pm #43076
Dude… WebGoat or DVWA. Free.
October 19, 2011 at 10:24 pm #43077
Oh, and UltimateLAMP: http://www.metasploit.com/about/how-do-i-use-it/test-lab.jsp
October 20, 2011 at 8:11 am #43078
Yah I know I just wanted to make sure it was not me that felt $7 an hour is mega expensive.
October 20, 2011 at 2:29 pm #43079
Ahhh gotcha. Well, I think my answer still stands… ;D
October 20, 2011 at 2:43 pm #43080lorddicraniusParticipant
Yeah, I thought it was a bit steep too. 2hrs/night = $14/night. $14/night for 1 week = $98 for 7 days. Compared to eLearnSecurity’s $99/30 days or $149/60 days. Or as rance has mentioned, compared to the free price of Webgoat and DVWA…
October 20, 2011 at 3:19 pm #43081impelseParticipant
I thought the same, it is expensive
October 20, 2011 at 9:13 pm #43082
it looks like it could be quite good but just the price they should charge like $99 for full access. You could get stuck on first challenge and it could be very expensive
October 21, 2011 at 4:49 am #43083YuckTheFankeesParticipant
I agree that is expensive, use the free ones that were already mentioned.
October 22, 2011 at 11:58 am #43084alucianParticipant
I would like also to try the labs, but I consider them being expensive. I would rather pay for eLearnsec or for OSCP lab time.
If they will make a price for a month access I think that I’ll try to do them, because the more you practice, the better you are.
October 26, 2011 at 5:54 pm #43085magnologanParticipant
Here’s a list of some CTF practice sites and tools or CTFs that are long-running.
Live Online Games Recommended
Whether they’re being updated, contain high quality challenges, or just have a lot of depth, these are probably where you want to spend the most time.
Downloadable Offline Games
– Damn Vulnerable Web App http://www.ethicalhack3r.co.uk/damn-vulnerable-web-app/
– Stanford SecureBench http://suif.stanford.edu/%7Elivshits/securibench/
– Stanford SecureBench Micro http://suif.stanford.edu/%7Elivshits/work/securibench-micro/
– Damn Vulnerable Linux http://www.damnvulnerablelinux.org/
– Mutillidae http://www.irongeek.com/i.php?page=security/mutillidae-deliberately-vulnerable-php-owasp-top-10
October 26, 2011 at 6:02 pm #43086
October 27, 2011 at 8:22 pm #43087MaXeParticipant
Even though it has been quite some time, InterN0T runs Capture-The-Flag challenges on occasion, and so does Offensive Security too. While InterN0T is mostly web-based, OffSec often contains some sort of Web App but is mostly focused on Exploit Development.
- You must be logged in to reply to this topic.