WebGoat教程学习(四)--代码质量

1、代码审查

Developers are notorious for leaving statements like FIXME's, TODO's, Code Broken, Hack, etc... inside the source code.  Review the source code for any comments denoting  passwords, backdoors, or something doesn't work right.  Below is an example of a forms based authentication form. Look for clues to help you log in.

 

 

posted @ 2016-11-01 10:48  励志SQA女  阅读(326)  评论(0编辑  收藏  举报