Hands-on training for Software Security!

OWASP has a project called WebGoat that allows you to learn about software security by testing and fixing an intentionally insecure web site. http://www.owasp.org/index.php/Category:OWASP_WebGoat_Project Leave a comment if you've worked through this and let everyone know your experiences!