WebGoat VS Lightning-Network

WebGoat and Juice Shop are two "deliberately insecure" applications containing hundreds of security vulnerabilities for you to find and exploit, including SQL injections. Both projects provide extensive educational material to guide you.

Click Save and then Run. If your codebase doesn’t have an OWASP critical bug, the pipeline should execute successfully. To enforce a fail on this OWASP scan, use a codebase with known vulnerabilities like WebGoat and you’ll see the OWASP scanner in action.

There's also a bunch of intentionally vulnerable Webapps and VMs aimed at demonstrating potential footholds and common exploits leading to owning of the host including but not limited to: bWAPP, Damn Vulnerable Web App, WebGoat, Metasploitable 3, Mutillidae, Juice Shop

Bro, i recommend you to create your own labs using vmware or virtualbox. There are so many VM images out there that was created for educational purposes. For example https://www.vulnhub.com/ has multiple VM images. You can test your skill by downloading and importing to your Virtual platform. Also, take consider to solve all problems in WebGoat and DVWA images.

I highly recommend studying for more than just the cert. Get comfortable with cybersecurity itself. My biggest recommendation would be WebGoat. This also works great alongside studying for the sec+. https://owasp.org/www-project-webgoat/ Completely free and intentionally built to be insecure and help you learn and apply security concepts and use security tools. Also try https://tryhackme.com/ -> Both free.

I'm using latest version which you can find at https://github.com/WebGoat/WebGoat/releases/tag/v2023.4

If you want to learn more check out the following resources: - OWASP top 10 (common security issues and what to do about them): https://owasp.org/www-project-top-ten/ - webgoat (pentest training): https://owasp.org/www-project-webgoat/ - https://safestack.io/ - really good software security training (I had in person training from them before their online resources were available, but haven't tried the online courses myself) - My personal favourite book on crypto is Applied Cryptography by Wiley, but I'm not a cryptographer, just an engineer - If anyone has more beginner-friendly resources then please comment

The main problem in my mind with the Lightning network is that in order increase transaction speed, it is reducing the decentralization by requiring participants to trust the other network operators that they create channels with. For the lightning network to really scale to a global payment system, we would need large central hubs for the payments to route through and you would end up with a poor imitation of the centralized banking system that bitcoin is attempting to avoid.

This page is a good collection of issues and criticisms of LN: https://github.com/davidshares/Lightning-Network

Bitcoin specifically, transactions times and the layering, in essence the lightning network, has been a failure amid many embarrassing risks (some of which allowing for the possibility of a contract being intercepted). https://github.com/davidshares/Lightning-Network amounts to absolutely not being an effective currency system from the get go. An absolute waste of energy. Deflationary by design meaning a disincentive to sell baked into it. The volatile value means a completely undesirable means of exchange.

Lightning network is an off-chain L2 solution, not bitcoin. Also terribly unreliable and vulnerable: https://github.com/davidshares/Lightning-Network

The truth about the Lightning Network: https://github.com/davidshares/Lightning-Network

And I'm listing literally just a few issues. There's a more comprehensive list here.