Installare Sahi

Scaricare l'ultima versione da: http://sourceforge.net/projects/sahi/files/

To install Sahi using the installer, download install_sahi_v35_2011mmdd.jar
and run

java -jar install_sahi_v35_2011mmdd.jar

If you do not wish to use the installer,
1) download sahi_2011ddmm.zip
2) Unzip it to any folder, say D:\sahi
3) Open a command prompt and navigate to sahi\userdata\bin
cd D:\sahi\userdata\bin
4) run start_dashboard.bat
start_dashboard.bat

Io ho provato al procedura automatica e mi è sembrata molto pratica.

http://google-gruyere.appspot.com/

 Web Application Exploits and Defenses

A Codelab by Bruce Leban, Mugdha Bendre, and Parisa Tabriz

Want to beat the hackers at their own game?

• Learn how hackers find security vulnerabilities!
• Learn how hackers exploit web applications!
• Learn how to stop them!

This codelab shows how web application vulnerabilities can be exploited and how to defend against these attacks. The best way to learn things is by doing, so you'll get a chance to do some real penetration testing, actually exploiting a real application. Specifically, you'll learn the following:

• How an application can be attacked using common web security vulnerabilities, like cross-site scripting vulnerabilities (XSS) and cross-site request forgery (XSRF).
• How to find, fix, and avoid these common vulnerabilities and other bugs that have a security impact, such as denial-of-service, information disclosure, or remote code execution.

To get the most out of this lab, you should have some familiarity with how a web application works (e.g., general knowledge of HTML, templates, cookies, AJAX, etc.).