Description of SecuriBench Applications

Most applications for Stanford SecuriBench are open-source programs available on SourceForge. All of them are Java applications that rely on J2EE servlets, Struts, and related technologies.


BenchmarkApplication description
jboard jboard is a bulletin board project written in java. it relies on struts, jaas, tiles,hibernate, jstl, log4j, xhtml and css2. it has been build to enhance some knowledge on these libraries. this project is a prototype.
blueblog Blogging application
webgoat WebGoat is a full J2EE web application designed to teach web application security lessons. In each lesson, users must demonstrate their understanding by exploiting a real vulnerability on the local system. The system is even clever enough to provide hints and show the user cookies, parameters and the underlying Java code if they choose. Examples of lessons include SQL injection to a fake credit card database, where the user creates the attack and steals the credit card numbers.
blojsom

A Java-based, full-featured, multi-blog, multi-user software package that was inspired by blosxom. blojsom aims to retain a simplicity in design while adding flexibility in areas such as the flavors, templating, plugins, and the ability to run multiple blogs with a single blojsom installation. The software behind Apple's Mac OS X Tiger Server Weblog Server.

personalblog PersonalBlog is a light-weight personal blogging application that is suitable for installing on your own host provider. It's written in Java and uses a variety of J2EE technologies, including: ant, servlets, jsp, jdbc, hibernate, struts,tiles and log4j.
snipsnap SnipSnap is a free and easy to install weblog and wiki tool written in Java.
pebble Pebble weblog is the popular server-side blogging tool written in Java. It's small, fast and feature-rich with an unrivalled ease of use. Blog content is stored as XML files on disk and served up dynamically, so there's no need to install a database. All maintenance and administration can be performed through your web browser, making Pebble ideal for anybody who is constantly on the move or doesn't have direct access to their host.
roller Featured in OnJava.COM Roller is the open source blog server that drives Sun Microsystem's blogs.sun.com employee blogging site, the Javalobby's JRoller Java community site, and hundreds of other sites. If you want to set up a blog server for yourself or for several thousand of your closest friends, then Roller is the perfect choice.

The table above is also available in LaTeX. We are planning to add more applications to SecuriBench. If you know of appropriate open-source Java apps, please lets us know.