WackoPicko is a website that contains known vulnerabilities. It was first used for the paper Why Johnny Can't Pentest: An Analysis of back-box Web Vulnerability Scanners found:
http://cs.ucsb.edu/~adoupe/static/black-box-scanners-dimva2010.pdf
WackoPicko Install Instructions:
Import the WackoPicko database into MySQL using a command like the following:
Continue Reading... http://cs.ucsb.edu/~adoupe/static/black-box-scanners-dimva2010.pdf
WackoPicko Install Instructions:
Import the WackoPicko database into MySQL using a command like the following:
mysql -u <user> -p < current.sqlThis will create the MySQL user wackopicko with the password webvuln!@# as well as create the wackopicko table. The wackopicko table contains all of the data that was present while testing the scanners in Why Johnny Can't Pentest.
source:http://linuxpoison.blogspot.com/2011/04/135781677511550.html