Vulnerable web application framework

Nicholas J Giannini, University of Rhode Island


Utilizing intentionally vulnerable web applications to teach and practice cyber security principles and techniques provides a unique hands-on experience that is otherwise unobtainable without working in the real world. Creating such applications that emulate those of actual businesses and organizations without exposing actual businesses to inadvertent security risks can be a daunting task. To address these issues, this project has created Porous, an open source framework specifically for creating intentionally vulnerable web applications. The implementation of Porous offers a simplified approach to building realistic vulnerable web applications that may be tailored to the needs of specific cyber challenges or classroom exercises.^

Subject Area

Computer science

Recommended Citation

Nicholas J Giannini, "Vulnerable web application framework" (2015). Dissertations and Master's Theses (Campus Access). Paper AAI1596042.